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(ADAC) J^ojJaj 

Active Directory Administrative Center 





Identification 




jJI AJLb < s >qLlu 



YEMEN 



linn mi 



Jjqjlj LqaIc LuLSJj l^LIqj ADAC _JI ojjuq LL&9 

Domain) JbjdL jol^Lo ^Jl 2US>j Server _U 
S)jla£ dLu^j ^>1aaJI ^>q ^9 ♦ (Controller 
Li^jlg t Server Manager _ll Feature 
SUa^ S>J ^1 ADAC _ll aiL^I QIaaJI ^> 
Enterprise dJUJI ^IjIa^L ^^Jg Windows 7 
3iL2al asu buJa I.L&9 , Professional , Ultimate 

• RSAT _ll 




Jjjq ilnill SjqJ^j^/I ^lc I iflKlg LLsi^j IjI l9ih 

j^Mlui Server 2008 9 Server 2003 

JjlLiJJ 2LLlJ ojIJ Jat I9*jlKL^j I^jI* ^HiAJI 

j^^^ ^ (Active Directory) <u.v.n 
♦ Active Directory Users And Computers _ll 
Windows Server 2008 R2 ^ 



k , Windows Server 2008 

Active Directory 1 
Administrative Center 




I 




_ll ^ Jg^gn Ig^n ADAC _ll ^Jl J 

9^ ^ic 9 # Administrative Tools 

<jx ojLx ADAC _ll (jl ih^Mluj oj9^JI 

♦♦ 

cLol£ OjLcl JLLqJI J l lnl ^lc J-Q-SLJ (J I cL^lfi *lic 

Active Directory _ll ojJoj ^ cu a\s*«\ Lo 1^9 
ojx LLo l-jUoIj ^111 Users And Computers 



^jq^jlJI Jjdidlg ojIj^I A<**i\\ ^IjJjq ^lc Ji^j 

Active Directory _ll £j>Ja cu 09^9^ 
fjLoIll 9i^ Ldl 9I Administrative Center 
Active _ll lJJ SiL^^L LaJa) ♦ (ADAC) 
^9 . (Directory Users And Computers 

^ ojUr ADAC _ll 0' li* J^^J 0 1 Q^aaJI 

_ll SjlIqj ^lc LjLj) JjCLLflJ GUI S^OQnlJ Sjfc^lg 

_ll ^lc L21J ,09^ ^jI^jl^j ^1 (^Iaaj PowerShell 

jjolgl ^Jl SjloLLII ^ij jO^jIj LujLjI ^yfc ADAC 
djaAidLj jqLlEJJ (Cmdlets) _IL Jijslj Lai 9I Sju^j 

♦ 3 «jiUnii 

Windows Server 2008 

Jaaa oa^l^lo ADAC —II <jl Jg£luj Qaa R2 

I*j Windows 7 ^ ^19^0 Liajig W2K8 R2 

_|| Lu^j ^| q.U?..>. ^ 9 . RSAT _ll .Iilgjl diiLal 
Jlo a£jL*j JjL^iu anh'.L Jajij o>i^I ^Jl ADAC 

Windows® 2000, Windows Server 2003, 
i Windows Server 2008, or Windows Vista 
iiiljl^l ^lc ADAC _ll Jjla^u Liijl 
Standard t ^9 W2K8 R2 

# uko Enterprise c Datacenter 
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^9 ♦ Computer OU LoJ 9 User OU _ll Jio 

ilijl jO^Hj SLlajlI^uj oJ^gJ jLoliJ cLoLlal { j<^^\\ 
LlU^g jLojJI cU2i^ ^Jl jjoIujjq J < mi i JjqLszUL 

La£ Add Navigation Node ^ jnill £j>la ^ 

*oj (jjog Sjlajl^jjlII oJ^gJI .1 Vig ojQtrJI 
Liu I J^^LLaj9 < < cLlJx jogjAjjjcdl jjJI ^Jx jiLLII 

L^loL^I ^licg t L&jjq L-tj^JL X _ll cLoMx jj ^Jx 

List View _ll ^ ^^i^ Tabs _ll !>l* ^ jinloj 

♦♦ ♦♦ 

Ja£ ^>1aaJI ^9 ♦ Tree View _ll ^ L^ilg 

OUs —II ^uio (jl^ 9I ■■ *j ■ ojLcj 9I ouLcl 
o J9 ^J| ^ AD AC _ll ^ AiLiiAJI 



>(M >«» J>1^** 54rv-:« » Owriwp 



iteKtPasswwd 




. QjQt^l 1 ^lc^fl (JJLAjJI ^Q^Qfl II X —II JJ 

Getting _ll 2LajI£ 0^" Jli^JI Jju^j ^ 

^>JI ^ j^aJI X _ll jj ^ Started 

** ^ f ^ « * 

3jqMx Jjaxg Add Content jj ^lc JoAJaJI 

, f «jlU^ II ^q7^q II ^Jx 

ddLAJib (JX cLoIx OjJaj HI |OAQJ ADAC II Liftg 

^ j^^aJI jJolcdl (jgLuij ^ ^Ulg Domain _ll 

♦♦ ♦♦♦♦♦♦ 

Active Directory Users And Computers _ll 

jLaJI ^lx jq^qaII j-k^fl Tap _ll <J Lc jiiULig * 

.tj^jn II jJajjaJI (jgLoj jtVifl II Lj*iic (jg^ini 

♦♦ ♦♦ 

Active Directory Users And Computers _ll 

♦ djJHJI QJQi^ll Lo£ 



®Q Global search 



v.- ^. :, -.^ ^ 



Lj jLllII ^i£ 9 . Lljjl^i 0' o^Ai ^ SubOU _ll O^J 
jaijl List View f^l ^> ^^Jl SJLijkl 

tjjjui OU 9I Domain _ll ,o^i ^ ^Ig 3>o 
^ OU _ll 2llqj& 111 u 2a>siju 1 j ADAC _ll 9 

^LqjjJ^j I^Ving l<T>75?nigj jcIj SubOU —llg ^^^^ 

(j^jx ^9 * Windows Start Menu _U cuLi^q 
JaaJI 9 J^lg OU _ll jLill Aix c List View _IJ 





j^jj La LojIj ^<<^t |j « Iqq..«^< LLLqx *iic 

Objects iiiQjl^ ^ix ^9^1 LLILqxI 

—II ^i) OUS ^1*1^*" ^1^9 (J-0 dXjXLLQ9 

M^ru^ll .-.I ^ 3 IIJI^^IIJ :; .. <0 l^,nnmain 
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assword , Add to group , Disable , Move 

£1 ^y&g , Delete , Properties 

♦♦ 

jjJLj Uc.X II g| jjLjjiLj SjlIx j£UI 9I p A^LlOA II 

^piiu Ja5lj i^'< Properties jLlllg jjaj^l 

(j^^ oAiLi LLqLqI ^IqjLaJ i^JJj JjQ^/I 

♦♦ 

Active Directory Users And _ll ^ ojg^aJI 
. aJliJl 5j9^Jl J11a^9 v Computers 




I 

I 



j.^»q|| u^'i.^^q . (JjlajJI ^icl Tasks jj 
Active _ll u^<^ Sbiu^JI J^Ja ^h: 2LLqI^ j^tv; 

Directory Users And Computers 
mslA .-Aji.^ki ^11*9 c Tabs Jiii ^ jdi&j 

j^qio 9I jLojlJI ^Jl cLojLS dxLla^/g A^k.^W 

(^IajlJI 2L212JI ^ Add Section ^ Uo.v>ii 

^9 *A^k*s\ II ^ ol^^ j-kl HI j<Til^jg ♦ ^99^ 

♦♦ 

_ll &^ ^ K * ; (jgL^j 9A9 Extensions 

Active Directory Users _ll ^ Sj^^aJI Tabs 

♦♦ 

^ir J^iuJI ^>1ajq cUMii ^9 And Computers 

♦ ADAC —II ghlnfl jfliA r> \Q-NQn j,cll (j^^l.^^ II 
(jjQ c j inl ir o jx 9I jirur (jx lIl^j Jjqjlj Ajp LqaIc 



Active Dfreeto... < 

LU 




Obbal Search 



r i nn Miti(hitt*1jWiirtir1irTii 1 

(~~ UBi^hnbiiiiiM^i^Q-fMrdjcndavlvnwirri 
<#■*! WAV «4 flrrk 



-LCU 





^^l'* XjQ.yy II { k | _U| ^JxQ OJJ3 jjj 

MRU) Most-Recently Used) _ll 
^LLa ^'^1 ^ ADAC _IL LoJ L.ai£ ^9 
Joj>^JI (^aj breadcrumb bar L^uJ i^U 

^ 1 1 o7 I I 1 Uv I I ^jjQX ^jjJXLJ ^JjQJLJ ^aJI ^ I « *s\c\*t I I 

jLoaJI HI 9^9 Windows Explorer _U 

^qIj jl JIaaJI ^9 .vt^^H Object _U M*L£ 
j^lk ^lc 'Uq.aIi ^jjJo <jx Domain _ll Sjuq^l 
breadcrumb _IL ^ Ia^ 9I ^JLu^lJI Jo-^iJI 
(jx (J_l£jq OU jLujq jj^j ^jl (J^qio 9I c bar 

3jlaaJI jo^^I 9 I LDAP _ll jUq 2ulK 

♦ Sj9^JI ^ La^ distinguished Name 




Dgtihi tiij Ji l 
lMS'rf|l|.J , _a**JTll3 

MA- /-":■ 
|l*«-TT 
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41 



1** 

**. 
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f:-v. 
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b 
B 



HtttfatM4f QtAf fee p^j 
Vta^mriu hm -i-whi -zrtf 



=1 



L l>)or: ti^T^rjr'Wr' 



"T5SRS~ 



-■■ i»' -.1 .. . j - 

■ 3 *r 




(J I J^Mj (J I gJL^li-LLJ ^JL5L0 Jir^WI LjjLl^l 1AJX9 

joLiiAJIg c Summary Panel ^^jlIIIJI 2LajI£ 

^ La^ Task Panel _ll 2LAil£ ^ ^jJoj a^L^JI 

♦♦ ♦♦ 

■o.t^TniQ II (jx (jnMio LU jjlJoj ^y^9 cLlJLLII qjqi^II 




L Active CHrecto.. £ 

I LU 




LABS-IT w 



1 






-|u -|® 


t Wat™ 


* 1 








1 -™ 




1 1 




UH 







1 L — 






HO 











log V' 



r /u-r-iiiri J 



^ic LuLlLI ,jl ^ajq ^yjl joLiLoJlg sami 
Reset Jia Tasks _lf ^ j.^.«h 
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£liu J^l Jjq Queries ^??ml ^lc Uo^h 3 

o,\ni 19 a^ijI ♦ Llj |09aj ^Ul cUjq^jlJI JLqx^/I LLlLc 
dill pLij (jig p<^l/jr \Q ^jLl^j „ p<..«oM i 



^ oj^^aji uiooai oearcn ^lc jillii ^>^aaji 

♦♦ 

JLLqJI J 1 1 ni ^jLc JjqjIlj ^-^9 ojj^jq jjLsla 

p^~u..>^ Enabled ^>J. 

^ jLa£ L^jI ^>1ax)9 Locked aE!** 

Convert To LDAP ^ 0^*9 1 

LDAP _ll Ja^ ^l>i |ol jjiluib Jlnff7,.i^ 
oj^JI ^ La£ JliaJI Jjl^uj ^ ((LADP Syntax 





I lt*Mt LZ*T M-f JW/ TYTt«. hcfc 




J±J 




(j,^ ^7..,^n Jl£ Domain _ll ^ a^ii ^9 

♦♦ ♦♦ 

(jgLoj Job Title ^9 sami ^o^M o nil <>jaJI 
2LjLL^ dJLnjL^ J 9^ iiiLo^bLcJI (Jjq Ajjjdg . Admin 
^JUJI J^jI>JI ^Jl ^jLlUI LDAP ^iLqM^I 

http://technetmicrosoft.com/en-us/ 

♦ Iibrary/aa996205-aspx 



Jax ^^IaaJI ^>q Normal View _ll ^£9 

♦♦ 



Global Search twvRud 


Tasks 

□ | 


f 1 [gun 








Itarc Ivpc | Owafflar 
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IDS & IPS Jl onJail main 

c c 

I /nil i Q 

••• 





^ Ml III 



<L»La^JI 

♦♦ 

^ui ^laj^aui aibiiji ajuUji aiLJi 

♦ 

I^Jg^j Lljlo £5 9 ^Ul *U^I ^j^j aUUJI dJbJI 



<JX I cLSLu^g cUjL^-qI 9ft LAjI £9lH ItlA JJLAJL09 

♦♦ 

Su^Luagj oj9^ o*i&9 LjIaJI 



IrtttrnH 



IDS 



Switch 



/ \ 







La pi op 



100 0 1 1QQQ19 



101 1 ?3 



(jJ LjIaJI J9JX 9I JiiiJI dxjjjj (j I Lioila <J9^ * " 1 1. \ 19 



IDS jqUoj J 9 I ^ 1984 ,oL: o>o J 9 I ojjgloj 

1-Q9JJJ9 jjg kliogj-Li 9I jjgjjL&l ^q^qci 9^9 1 986 joLc 



1hni9.ll dJgGlj joJ ^Q>^Qci Jglijl ^9^ JliLoJI lAiL 

* * * ♦♦*♦♦* 

(jx jgAj 9^9 "il <<■*<! I . .I.^> ^9 |qL^ cq-'-^q" II (jg^ 

c Liu^gLog c |QS Jl "aa!^ IPS Jl rtnhil 



I 




S IDS Jlc^Lo 

ojLc 9A intrusion detection system 9I IDS Jl 

tliLujgjjLaJI ■ il a ajlliIij q ■ l^>" ^jln^> follaj (_yc 

lILloIjUI (Jjq ^^-« < « JLjjI J Mil (Jjq SL^LiUI jjx 
Joflfl . I j-i o II J ■ KVII _lc djLujLuj^l dlaJag j^jZig djJj 
^lujl&l LuLua^i ^Iaj Rules ,jl£ bLalcl .JJjg 
^Jl iLL^^Li Lan^ AiLLlLj J)9^j Lai L9AJ LlIjIjxI 9I 

(jlAjjJIg ^LjjgjjiJI (jx 4I1LQ9I5LQ (JQ^I iliLiLu ACI9S 

ijIiuQ j9^j ^Ulg ^9^jLq J1j ^liJI Signature 

j09oj^ cul joUolll lAiL julsjIjq (jUg iliLjUJI ojxLo 

♦ **«■ 

9^ cU |QQn iLq Jlii iliLtigjjLfiJI Ia^ oL^jI JjJli oJj (jL 

.JJL ^ ^Jaiij ^£9 .a*.<ii ^1 ^jjtf^ detection 

♦♦t 

^Jl (j-jgjjLiJI J^J IjI jjlqjLajI ^9^ IjLq j^I |oMl-J9 

0i ^91 ,oi5Li o' e^i J 1 ^ 1 ^ 2L ?^ 1 5 2< : A " 



1 



OJJ j^AJI utJJ o-^goll 
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132.1 63.0.2 



192,168.0.1 




Modern^ 
Ruler 



ethl 





Hub 



IPS 
elh2 10 001 



192 169.0.3 



v — 



$ IPS JI^La 

Intrusion Prevention 9I IPS Jl 
(Jjq ojQhfl ^LLuij 9^9 Systems 

jogiL L^^iiLjg 29I Detection , nnKH 
Prevention 2LLl5lq J*i Sjj linllj 
IU Sjl^JI ^LU Drop Ja£ Jl* 

♦♦ ♦ ♦♦ ♦♦ ♦ ♦♦ ^ 1 



10.0.0.2 



liJjLflljliJ IPS JjQ-fcj J iy nil joliij ^lc cUju^Ij jOJ j-19 kl1.Q9.uj 9^ Lift joUojJI (j I ^-SLq J^Mj Lo£g 

ill** I I ** 

JLjjL |09aj (j I LAjI jgih^nng cLSlLoj <jl gj^Laj 9^ jh^ II LlLfiljUJ SuL^L-j^fl cLqjjJo 9^ Lz^jI OJJLA-1L09 

t * # 111 



ojjJLa (j^^ J SjlLoSLj l-lclq A09 jjgJjLb ojjfc^lg jjg ringni £cjoIjj LojLuj lZjj^a Lo£ l!jIjjqjjujjJI oAAJ l^jL^lg 
9A9 Snort ^tjj £joLjj-j Vinilg cjlajiag-ll o*iAj jogiLj ^Ul £loIjjJI <jjq j 1 *K II ili.i^Qn lIijjIj^I ^lc 

oAifc JIaJ LojIj ^l^-jI LjI Iflihg (jiKqi 1 1 19 rinQmg^jLo cLoJajl ^lc d 1 nrm (J^^ j jAuOjoJI ^g*ino ^qLjj-j 
diLa^L jL^JI 4— il mKoI (Jjq lj 1 i's iMImTnil^g ^hjh tliljIiJ J-a£jg Ijnniin (jii^gn I dalVil ^Luli^l 

^jqLjjjJI J^-jIj liAAg ojjlLi Rules Jjla^j LAjI gjhTnilg ^-jKq ^jqIjjjJI Isthg (JjqII LaJig^ ^Jl 



♦ ♦^Jlg ju\q-\ (Jjq ojJl^jg 3Com <jjq ojjU^lg q<..«<^.* <jjo ojJl^l lJLL&2> 1*1^ ojja£ Lz^jI ^yki jjgJjL&JI Lol 

S oji31^^l OAifc £lgjl J^Jail J 9-^ cUJjCLgJI p <V<jl ..m ^jLojI 



Jjjq j<..^..^t 2tuoLi <LjjLj O'j^ 9' ^'wH9J Lr^ ^^^99 (oUolll 1 Module ^IjjIi ' Vi< ** 

and 2800 3800 1841 S>J ^ ^HJI Module Jl 
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yLbliu 



in ii ii in 

EGYPT 




ahmedsultan@ciscawy.com 



J ^-0 *K inill (jjiiu ^Jx )9^9%J ojjl^J <UgU^ J nnQM jQ^J 9I dJ)Lo SjlLxq S^ini lLLLLqj ^/ LLq (Jjq 

tj^su ^9 culx c Iq;-'" II Joii irj^ j ■ '""I d^LiULc lil&a alji^l a ax Jijxj ,jl jjq^/I ■ -dlalj (jL^I 

Penetration Testers Jl 9I ^Ijii^l LiaJ .uqj j^fl la* LIU a^IaaJI J>jsu ji ajp oL*2l 

J 1 9ni7 II djalojlg cK inill q^q^qq II ojJl^^l jjx <-QjJLi <jl ^/gl ds>j\\Q II 3<i.?«M jLlL^I Jjqx Jjx 

♦ jli^JI ililj^lll jKjQ 2Lflj5LO cLuLJ ^Jx 1,1 nl jlrt^ J£ ^Jx O J^^aJI illLo^lLII ^Jl djLfcill ^i) J-uOJ 

^-jlgnir (jni I Pg^gjaJLo a^ulii! gnio Jjqx <jx di^i^ju Lqajx , 2<« AM Jjqx lILLq jIIqIj J£ 

gnlQ II SjlLoSLI cUjjlLJUJ JjJjjQ iliMj A^i^J Lfrio 1 jglbjoJI (jlajjLlI - i^n ^Jx cUjjjJalLLQ J^IjjQ ^jJI (J^Jg 

^ S^lg J£ ^>x A*^r. Qxj Network Scanning, Port Scanning and Vulnerability Scanning 



Network Scanning - 1 



Ja£ s.a.<i iualUI ^Jiij&Aj aj.idl TCP ■ .'U.^-.i 

la 9I Three-Way Handshake 

AjaaJI j9auo ,euiij2 J9^9J9>dl jajufi ^ jjj^^l 

:JI AajSLa Liajlg Flags 

JL^u^l laaJ SYN 

JL^uI^Jxj^U ACK 

JLJI ^ ^LiUiii JI-jjI Ja&j ^9£j PSH 

oj£ljJI i 0 jUaljl (j9^ 

Stack Jl oj^lj J ^aiJa iIlrjj URG 

a Lo iJjju ojjiij J jollaj 5 II 

Jja£ ale 9A L^jJI JLlo <-i>BI (ji/l ■ -JJoJI I Jul JAAJ9 

f Laul JajJ Ctrl+C jijji ^Jx Uo.^ii >;. . j^i 

JL^u^l *L^il ^ilk aix r >^" FIN 
ACK ^^liJI _j -iui' ^Jx £ : ,oli jl uoj 9 
i_JJq (_Ix dxAl9AJL jii^l Jij^JI l_l^-> (jl (jl 

flAj^l 

Jj^Ja ^> JL^ttl ^L3lj)( p-t^-tn RST 

j.k^/1 <-QjJaJI (Jjq d^lgjoJI jUoIjI ^jgj A^lg 



|y o pi ^qVoo jL^JI JjL 3xjjlq ^VKq 1 




2Lfij5Lo (jlajAj SL^ijlilJ JjqLIj ^jjJjq Jjqx cLj JQirtn^ 
4I1I9JI a^L liJJj Jjqx jai-19 LJL^ cL^glLaJI ojj&^I 

^jL^jqJI ^qLjjjJI L&jj&j2j|g ^loaJI 

Angry IP Scanner 
cu2 gninll ^qI>j ^il5Li PING Sweep 

<jl «i_bj^ 9I ^lluq» SjujjlIIj L^LLslo LlLLslo Jjq-5lj 

djQilg Sweep 2<« AM JjqI£ ^nio Ja5Lj iluciB lILjI 
(JX SxlajQ 9I OJiL^^I lUijL^ I jl dXJJLaJ 

JO9H-I (JjQ 9^ ihtin ^9jl£lqJI jI^-n IIq ^UJU SJLuJJ JLujI 
SJLjjJI ^lc Jj-lb JQ9H-1 ^ ^Ivnllg jjJI JL-ujLj 

192.168.1.0/24 aiiAU J^t aIt JLLq 



Scan Goto Commands Favorites 


Tools Help 






IP Range: 19216811 


to 1921681255 


IP Range * 




Hostname: Ahmed Sultan 


,tlP ( 


Netmask ▼ 


& Start 




IP 


Ping 


Hostname 


Ports [0+] 




#19216812 


0 ms 


Reception 


[n/s] 




#19216811 


0 ms 


[n/a] 


[ri^s] 




#192168111 


4 ms 


[n/a] 


[n/s] 




#192168.1100 


0 ms 


Instructor 


[n/s] 




©192.168.1254 


D ms 


[n/a] 


[n/s] 





« S # i f 

(Uc jI ^jJljL^JI 09^i 0' ^• ' t ' l 3 ojj^^l 

^jJLf ^9 fe 11 ^ J 1 ^ |Q ^ T '"J 

t>o jkl a^9J ^IJaJ ! <ul ^ ^kix 

L^JMA (Jjq ^jlJoIujI ^lljljJI i ilh i-bMkj (Jjiil 5xjjJ^ 
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<jl oIIslq RST _j JinTniflll jL^JI Jj IjI 

Xmas Scan - 3 

J-lS1llLqJI jL^JI (JjQ 

|^H| FIN, URG PUSH 

^Hl ^ No Response 

Attacker Server 

10.0.0.6 Port tsopen iacx0 . 8:23 




Attacker 

10,00.6 



■ 

Server 

10.0,0.8:23 



: FIN Scan -4 

FIN gMiJI JLlujI joIj (j^iJI (Jjq ^9lll 

J in7nlQ II jL^JI (JjQ JjJI jl tVTifg 




Attacker 
10.0.0.6 



Server 

Port is open 10.0.0.8:23 



^91ilq jL^JI 



Other Scanning Techniques 



: (TCP Connect (Full Open Scan - 1 

ICMP Jl J9^9J9j-j (J9^j (j I (j'sq 1 LBjLj 4I1I0 LaixQ 
-j ^ I ^ ili^L JLjjI £jjJ^ (jx culc JLlL^/L J09BJ 

SYN Flag 



SYN Packet + Port (n) 



SYN/ACKPatket 

^ •*•»■ ***+iini«»ffff||| If II »IIIIIIH«MllliM«4 ItlflfflllMmffM I *■ 



ACK + RST 




^Mi cUjul ^lc jjJI pLi IjI cULJI oAiL ^ 

SYN /ACK 

ililgh^ i^oL jL&^JI Jfl^ 19 £$1Lq l!jj9jJI (jl oLLslq 
jL^JI (jl Jjjx cul (^^19 jIjI IjI dUL^gj 9I JL^j^fl 

(Stealth Scan (Half-open Scan - 2 

ihnn 1 ilhll JLjjI ^Isloj ihnn JL^j^/I < Lnj joIj £ 9III I Aft ^£> 

JL^j^I J^< ; ^9 djJx JjJI jh?t 19 

^9^1 aJLJI 




SYN (Port 80) 

SYN * ACK b> 
RST 



1C.C D 2 2342 



Port is open 




Sheela 

10.0.0.3:8C 



)aa jl oQiLo Lu* SYN/ACK -j Ji£I^dl jL^I jj IjI 

JL^j^/I |qLcljI jIIVmI ^09 ^9*l£lo 0J9AJ jI^-n Hq ^r)7no iIjj9±JI 
(jl J-lq JLaj^ll ^L^j^I RST JLajjL J-ljjjqJIjL^ II L^Lp 

JjjJJjqJI jL^JI 9A (JJQ J in7nlfl II jli^JI 1 A.^i7<^ 



:^IUI aJLJI 



4» 




SYN (Port SO) 




BUI 

10.0.0.2:2342 



Port is closed 



Sheela 

1O.C.0.3S0 
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* ♦ ♦ 
A^lg (Jjq idjL^ ^Jl Jg^jJI JgK 1 ni cLjLa (Jjlaj^/I 

POrt JjQX (JjO AJ^ jL£ idjjjg AiLLoJI oAifc (JjQ 

cLoAiJIg An i oil jOjqj ^yfc cL^jLlj (J9^ (i^-" Scan 

(JjQ ^9lil 1*1^ JjQX |dj9 LlJL^ cUlc QjQ^Qfl II 
^Aj^s.^iIq A0I9III £jjJjO 4I1I9JI (^JJ-b (JX ^mIQ II 

J < n 1 1 q % 3^j^ j 4 ^aJI s^qTA* oIjI Nmap SIjI 

d i oqhij Sjk^lg Lk^jl cdg jjolgl jhni (jx ojLlc ^y&g 

♦ ♦♦♦♦ ♦ ♦ | * A " II** *♦♦ I 

£ f 

jW\Y\g ojJi^l cLcqq^o 9I (JJL5LQ ^lc AoLLoJI 
■AnloJI jOjqj SJjufc ^lc (J9^j ^Ul (jn^nll Sj^jlu 
dude Jjo&j ^jlll SjQJ-a II jo-tulg ^9*1 no 



•ioLLdJI ^jjJjQ JjQX AJX OJJ&LLaJI S^JLLJ II J *N n 1 1 JLLq 

192.168*1*2 0>9^JI^ 



Startin 
2012-04 
NSE: Lo 
N5E: Sc 
Initiat 
Scannin 
Complet 
total h 
Initiat 
Complet 
0.11s e 
Initiat 
Scannin 
Discove 
Discove 
Discove 
Discove 
Discove 
Discove 
Discove 



g Nmap 5 . 6 
-04 12;2G 
aded 92 sc 
ript Pre-s 
ing ARP Pi 
g 192. 16S. 
ed ARP Pin 
osts) 

ing Parall 
ed Paralle 
lapsed 
ing 5YN St 
g 192. 16S. 
red open p 
red open p 
red open p 
red open p 
red open p 
red open p 
red open p 



1TEST5 ( http://nmap.org ) at 
Egypt Standard Time 
ripts for scanning, 
canning . 

ng Scan at 12:20 
1.2 [1 port] 

g Scan at 12:20., 9.26s elapsed (1 

el DNS resolution of 1 host, at 12:20 
1 DNS -escluticn c- 1 host, at 12:28, 

ealth Scan at 12:28 
1.2 [1889 ports] 
ort 445/tcp on 192.16S.1.2 
ort 139/tcp on 192.168.1.2 
ort 33S9/tcp on 192.168.1.2 
ort 554 /tcp on 192.16S.1.2 
ort 135/tcp on 192.168.1.2 
ort 2S69/tcp on 192.16S.1.2 
ort 18243/tcp on 192.168.1.2 



: SujliJI 2ULJI 



Vulnerability Scanning - 3 



' oa*IaJI i hi nil i qLIll^I SJj^jjo J-^g ojjl^I SJ^jjoJI 
|OjaqJI L&io L^jIj^I < -Lui^ ' oaJaJI J^Loj ^Jaslx 

Jl^Lj (JaJI l-ljA^JI Lfrlog ^^O'^ ihiii iJjgjJLoJIg 
ihijj II oAiL < * *«< £jqIj_j j^nil dalnn^l 4I109 

Nessus 9A 

j^i^q ^mui JaIj ji a< : AM 




Attacker 
10.0.0,6 



Server 

Port is closed 10,0,0,8:23 



£ £ £ 

(jl 9I jiJ iijj9_j ^lc JL^j^I JLujI cujjjiij |OQn 1 L^ljL^g 

NULL Scan -5 

^9^1 aJLJI 



TCP Packet whh NO Flag S*t 



Mo Response 



I , 



Attacker 



Server 

Port is open 10.0.0.8:23 



JL&^JI ^JLLILg ^9jlLq l!jj9±JI <jl oLLslq IAi^ jj J-uoj joJ I Jl 

_ ♦♦ ♦ 

aijiui ajLJi 




TCP Packet with NO Flag Se: 



* • 



Attacker 
10.0.0,6 



R5T/ACK 

Port is closed 




Server 
10,0,0.8:23 




£ £ £ 

(jl 9I j-kl l!jj9_j i^Jx JL^j^I JLujI cLjj^Lj 109AJ I<t>i 1 ^9 



Port Scanning - 2 



£ ^ # £ 

Ojj&^f| dLQjSLQQ A<t*t\ \ JjqLIj ^jjJjQ JjQJLj tHiAQ (jl A5LJ 

^ii jl^l £0521119 jLjlL^^{ 4I109JI (jL^ cL^qVoq II 

joLbJicj oj^IaJI jo^g ^JLslqJI Sxjj^j J1a SI nnlnl 
^qIj ^/ ^Ul J nnln7ll (Jjq ojjlc ... 9 jQA^IlliaJI J iynii II 



J 
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- 1 



LsJMii (Jjq obi 

J 9^1 (jl gJL^Loj 
^Jx (JJLC Vlnlfl 

root ^Jl ^II^j ^LuiiL |Q9£j o' JjL^iiUI (qL&j 

root password . ilh i 




S SUdO Jlo (jjiil Jjlgjl idllL Ja - 2 

switch user ^iaj 9^9 su ^q2I Mia \xA* 

SU ^HJI £j>Ja Jx rOOt ^1 ,Mmn 1 J92J ^ 

^i^m.^ j< ^1 o : U7..r t ^| ^HJLg -root 

JjjiLi Lq L2ijI ^JQa joUoUI ^lx *Llu Lq Jssu <j\ 9 root 

jL^ilL ^9 roles, and authorization 

ljo«U7 t .i , ^| Log cU Iqoqo 1 (jl lgc«U7 tt i , Log jjqjjujjJI 

S su jol J^l sudo Ja - 3 

SUdO J Mil (Jjq Llojlg CU9JLC9 cuIJjljQjq LqALq JU 
(JjQ Jabi^l (J-U9 0L5LLOJ 9 SU jjqI .\fm (jl ^jJoIloj 
lIUIaj jLaliLg Lfcj^f SUdO 9A cUjJx^IjJqj cu^g 

(jiJI etc/sudoers/ 0 flnn configuration file 

ViSUdO >02l JMii JiQ cdj^liLLl jQQ^J jl o^U7. gj 

^ jO^uJI cUjIIaI >I : Uq. <u2 jiiil la^A ^JUJLg 

♦jllI clLslq ajp Lq 




jac (jx ojbx team Jl (J9^.\ a,t>,,< 3^ <jl ^ 

(JQ^Ifi ,(jjL52jQ P^jIj (JX (JjJqi nlfl I) jljij^/l (JjO 

Oracle database team, and Unix Mio lUIL* 
Jl g^JLj »a<^3 Administrators team 

JjlAiIllJI joLLqjI JjUO (JJL5LQ p^ali (JX JqImIO U9^J 

privilege cu^^La <uaJ J9IJ 9 ^LjUJI axloi 9I 

cULi ,djJx JjQ-SLj (jaJI ^nh7l) 9I Hall I IjbL ^Jx 

Jl lILLLoJ (JjJI jOJ^jLoftJI (j-olilJ II 9I Jl 

JjlIj^IJU root 9^ J : q^" ,oll^ ^ JjL^^LdJI 

Jl .oUoj 

Lq cdliiiiQ dJI Jjl^IU I Jl ^UoUl Jx JjJgi^Q 

1 JJalLLQ I) 9J& OJnl5? I) jjQ (J I J lA^J gJ IqjLaJJ (Ji&fi 

lIUaJ Jh^ I) IJul £jJLaj cuJx L-i^j (jAJI 0^9 

■oAJ-^I (Jjq j mi II do K ^Lula J Lola I 1 nK i IAC/n 
^L^jgAa (jIjoj ^Jl jJaLLoJI jjQ L^jjLXg L&jjLXg 
JjL^^LdJI Jl dliLoj root 0' l^J ojli Jajl LLa <ja 



,J m.^Tnin I) ^Jx tliLu^LaJI oAiL ^jgJi ^ Lolo 



printers ^ root jjLpM^ ^jop <ul 

^Jx cGLL^Ma^9 JjjLsJI j I) (JjQ dXQQ^Q I 

(jjjLsdl jiin.iVinifll) (Jjq clcqo^o I hard disks 

MIq dJull^JI ^ d HjIlq IjI cdbJI oIl J1q 

Lr> 1I9 Ijll ^Ml^I culx (jjog 1 jj-loLq II Jjq lajsu 

• jo^^/l Jjq Ll>lx9 hard disks 





£2> 







Make a sawoU'ch. 



S0OO ! 




What? make 
it vcxk5elf. 

/ 

/ 




oiaJ aj)9J l^iL (jic cLajLo SUdO oj^i 



♦ ♦♦ 
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S sudo package 
S sudo configuration file ^ JjAaUl ^ 5 

^ 9 cui lHj^LaszUI culilj ,09^1 ^ ob^L ^liJI JAaM £1aj>oI 9^ visudo JMii <ja 09^J ^ 

: ^JlUl* lxlLoJI la* ^ entry Jl^i 
Username/groups servername = (users commands can be run as) commands 

Username/group 

(JjQ dXQfl^O (JX OjLlX ^yL (^Ulg grOUp 9I Jjolg^/I OAA Ainlj ^0 A^LuaJ JnlQ l I) |P nil <JX OjLx Q(T>0 

wheel'A JIjo p ..Il i jx L&jjuojL] LlJLB */♦ cuLLlaLj jogiij group culll Aic cul Jo^^ (j m.iVinifl II 

Smith, Mohamed, Ahmed, V-samba, V-apache 

Servername 

^Ulg (ALL) LfrijL^j t n<*i Jlgji^l L-iicl Lift ^yfcg entry Ldulc ^11 1 hi toIjUAi ^ill ^IjjdjjuoJI ^Iflnil 

j<ii ^iWj entry Iaa o 1 (i 1 J^J' 



file £dii ^i?* S^afch JermiiwJ yelp 



Sudoers allows particular users to run various commands a & 
## the root user,, without needing the root password. 
## 

## Examples are provided at the bottom of the file for collections 
## of related commands, which can then be delegated out to particula 
users or groups. 



This file must be edited with the "visudo" command. 
Host Aliases 

ft Groups of machines. You may prefer to use hostnames (perhaps using 
## wildcards for entire domains) or IP addresses instead, 

# Host Alias FILE SERVERS = fsl ri fs2 

# Host"AUas HAIL SERVERS = smtp P sntp2 



## User Aliases 

These aren't often necessary A as yo 
UU (ie, from files, LDAP P HIS, etc) in 

rather than U5ERALIA5 

# userAlias admins = j smith, miken 



can use regular groups 

his file - just use ^groupname 



f# Command Aliases 
7etc/sudoers.tmp M 107 L p 3531C 



La^jH ^Ul ^!>Uiai]l <ull£ <u£ ,0!; ^.Ulg SUdo ^liJI .nloll 



16 



® NetworkSet 



Issue 26 -May/ 2012 




Commands 

^JliJI o' 1^ p'-^-i; Mohamed ,09^ ^ mount ^HJI y>W ^ Mohamed 

<jx JIqmiI) (J9*1j jjq^I Ann (jl ljJjI I jig cU dinIM) jjjoJI daK <jx cUIq.im joUoill ^90 in SUdO mount : 

♦ dju^/l <dio2l ^>L^j Lai ^Uj J*Li NOPASSWD 9^9 entry ^Haii lIL cu^liJI >^JI <uil£ 



: oIj^I ^911 cdio^l (j2i5Lj gjQ j^lg 



Mohamed ALL=(ALL) ALL -1 

joUoj ^lc root Jjjq >;-^l cul (jl SUdO A5Lj cuIIj jjqI (jLi jqLSJI gjJoL^iJ aa^jq p .%V?..i/»H <jl LlLLslq I.L&9 



Mohamed ALL= /usr/sbin/visudo, /usr/sbin/mount - 2 
Mohamed ALL= NOPASSWD: /usr/sbin/visudo, /usr/sbin/mount - 3 



file £d»l View Search Terminal Help 



root ALL-(ALL) 



ALL 



## Allows members of the 'ays' group to run networking, software, 
## service management apps and more, 

# ^sys ALL = NETWORKING p SOFTWARE, SERVICES, STORAGE, DELEGATING, 
SSES, LOCATE, DRIVERS 

## Allows people in group wheel to run all commands 

# Wheel ALL- (ALL) ALL 



PROCE 



## Same thing without a password 

# %wheel ALL=(ALL) NOPASSWD: ALL 

## Allows memhers of the users group to mount and unmount the 
## cdrom as root 

# g ausers ALL=/sbin/mount /mnt/cdrom, /sbin/umount /mnt/cdrom 



tdown this system 



## Allows members of the users group to shu 
# g dusers localhost=/sbin/shutdown -h now 



hikal ALL=(ALL) ALL 

ahmed A L L= / u s r / s bin/ visudo f /usr/sbin/mount 
mohamed ALL= NOPASSWD: /usr/sbin/visud 



-- INSERT -- 



■ 
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S> NetworkSet 



OLiu ill ll Jl^o 



Magazine 

^ NetworkSet 



Q nn *Vi q Qjjj-C Olrio Jqt 

i' iIA, i ill II JL3-0 O^O 





TIT 



oo^pJ cmj-c fqpiu) Jql 

■ ■ 

Q i i Qi H q a iqIqII ^|q_oJ| 





Wiki,NetworkSet 

6j_3 Ojjj-C cLcqjjjq_o Jql 
If* ; ill ll Jl 7 o \jJ> cuojclqILq q 




Qjqj^illq Q II mill i jjaLb foaiLO 
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Upgrading and 
Downgrading CISCO 
Access Points 




Identification 





U in i O II J^U 



j**! i^K I I ■ p tna ^ jiwa J J ^ I I 



EGYPT 




^Jl Standalone ^^Jl ^ ^ili^j gnm^l Jjg^U 
^ (J .«<oii j 53^^) jjul^LJ 2bkbJ) jj aj Lightweight 

downgrade 9 upgrade ^ULn: 



Cisco Aironet 1250 
Cisco Aironet 1240 
Cisco Aironet 1230 
Cisco Aironet 1200 
Cisco Aironet 1130 
Cisco Aironet 1100 



AG Series Access Points 
AG Series Access Points 
AG Series Access Points 
Series Access Points 
AG Series Access Points 
Series Access Points 



^ 21 lightweight J^aj ^ Ja*j 2 0)^21 9 

oAA (Jjsx |p£Aj jJgjUS II <j9^-| 0' 9 J^9J-^ J 9-?9 

|Qjlf) , i 1 1 (j i hci i II JjQ-sU jL&^JI Jg-^j (j I o « g 
jcxj (JJjq 9 jL^JI £gil Lsllj lIUj 9 Jjh lh7og 

JjqVi II cLlLqx ^Qnn 9 jLl^JI (jr i Jjq Vil) I.L&J g£ 



9 Upgrade JjoLUqJI ^Jl .%jk\«\\ j^aIII ^ 

Downgrade Jl Lol 

Cisco Aironet 1250 AG jl** jlo Ha J aLali - 9 
^HJI j<.mi oljj ^Ul 9 Series Access Points 




1 


2.4-GHz radio antenna 


4 


5-GHi radio antenna 


I 


Module slnl 0 < 2- 4 -GHz radio module show n ) 




Module slot 1 (5-GHat radio module shown) 


3 


LED* 


6 


PC cable sccurily slot 




(Jjq l1lLi9_i (j»'"»<^l ojmVl gjQ LilLoL5Lj 9I lILjIj-iIj a\c, 

JjQ-5Ll ihfll 9I (J I <-OJ-5LJ (jl AJ^f L^JJLC 9I 

9^lOJUaJ ^fi jliL^JI >hfl I Pgj di)J_$LQ jOJLJ 9 jL3l2jl dUfl 
JOAJ (jX OJJJJjO "LAP" 3 «l< II j iVo'i'n CLL1J9JO |Q-ujl (jjO 

AIR-LAP1252AG- Jjj^ ^ La£ lightweight 
<j£ Sjisia "BR" 9I "AP" an"KII ^jIsj 9 E-K9 
La£ autonomous 9I Standalone 9! IOS JoaUI 
AIR- 9 AIR-AP1242AG-X-K9 0^9^' ^ 

BR1310G-X-K9 



o^U?..i" q<..,^..i (jja "inji !j <^fl ojiL^I i—JLc 9 

Lightweight 9 Standalone Jasj ^jl 

Controller- Lo 9! lightweight £1^1 LaLo 
ojii^l ^ AjalsLi ^Ul .-.!<.. mi ^ p ^"- ...» Based 

Standalone ^^Jl Lol 

^.l.xni f ^jbdi s^gji 9^ IOS 9I autonomous 9I 

tligjuJI 9 ojjl^qJI lIjL^JjUI ^ii &a±1llu (jaJI 9 1 19J 

duo p<^"; jiil jL^J cL^L^JI (jg^-j 



^g^J g Cjljga y.t^.tC^fl jjx ojLjj SjlJLqI^^ IjJoj g 

juv^iA/nj Lightweight ^Jl Standalone La^r^l 

SJ-LuJQ jL^jI 1 JLc tlilox I ,\ <T> I q oAjJ^ cLuIjjuq 
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ElMimfi.iid riiii' | mi 



FV Edit Fwmat Vkhx He%> 



^ ^gjiiui ^ Telnet ^Lajl J:°""; ,oi 

Management>Telnet-SSH ^ojUI J!^ 

jJgjTW II ililjlAcI 19AI9J (jjQ a^LUL joiS 

TFTP JLojI J£^( ^ 9I Ja*j Jggjjli 
Cisco IOS- Jj9^UI obi £aLj}±]I ^Iiu 

LlIjj ^Ul ^jIjUUI ^ ^Ul 9 to-LWAPP 

♦♦ ♦♦♦♦♦♦ 

I 



* i / 



10.9. 4.131, CISCO, CliSCO, ClJCQ 



■ AP IP address, Telnet 
username, Telnet 
password, enable password 

■ Hardware-specific file 
image \ 

■DNS not mandatory when 
using the utility, mandatory 
when using WCS 




[||[4 S I 3 1 1, Ml 



dm. \ u*th\ 3 ***r 



if tf> *d**n 



MM 

C'HiWlosiirQljfv^l^ - ~~ 3 



E- | BmMHi| 



(jjo ji£l cu lxlLq goiaj (j I o^u?..«~« IP File SjLUI - 

(JjQ jl^l SjlSjjJ |09£U tllljO^J (jilnKI (JjO Jjl^^f IP 
(J9^_l lXlLqJI lAA 9 4I1B9JI (j 1 1 0 I ***** I9-J (jiImKI 

(jilnKI (J^ 9 ^jLkJI J^nl II (JJJ Lo£ tXt ^l^-J 

>^ 69^ >^ £^9^ ^9^ 

♦♦ ♦♦ ♦♦ 

lUiL enable 5^9 9 telnet jjo^L 9 .a^jl 9 IP <j'9^ 

ap-ip-address : te]net-username.te]tiet-usei-pass\vord T enable-password 
a p- ip -a dd ress ,te 1 n et-use rna me , te Inet-us e r-p as svvo rd , e n ab 1 e-pa s s\v ord 

y'"'^ J 4\r\\\ II IOS (LLllLJ Jjla^Ij jO-S 

u^lidl TFTP 9 lIL iL^liJI .IlLi^j 

jQj j^l TFTP jjqjjuj ^lqLjjj (Jjla^Ij jO-Q 9 1 ^qLjjjJLj 

start J**^l 9 ai^iUI Jill 

oijj^ui jiAJbajLSjiJi 















• 1 r 4 r j. ii*d :-*» •v/fir' 1- •• — ■*.—» nvijt -n so (hi ft" 



LWAPP ^1 IOS Ch> Jj9^UI 

5^9 ^Jl Standalone AP Jjo^j gJol^ 

^jJa Upgrade Ja£ (jl Lightweight AP 

♦♦ 

9 CISCO lOS-to- LWAPP Jj9^UI obi IaaaJ 

j 9 ^lj9 ^ Jasu j±sua ^xjlj^j 
(jja WCS j "j ' ■ ■ ' pi '^"■■■j ■ 3 '*■!■ 11 ciiLijJaJI 9 

♦♦ ♦♦ 

* ♦♦ j 

CLI jjolg^l cL^gjQ pl t^V.^I 1 daJLllI LqI 9 

»» 

GUI cLujjqJI <-jl;9-II ^^^'q pi djuljJI Lq| 9 



£1^9 ^Jl IOS 2^9 (JJ3 iIiJ-19-l (jilnK^jl (J-IQ^7l 9 

^HJI jiglj 0> Aili LWAPP 

JiLl ^/ tljj «Q J < j.«..t<^|l J 'P"n |oLHj Cj9^ 0' ^9' 

JA 12.3(7) ij*. 

^LkxoUl (jjo (jo^j <j I WCS jiijjjjj UjLj 

J£'^l 3.1 

J£2I ^ 3.1 



o«U7..« « /j >i i \< Console , q jI^xI ^LuL^jqI 

Ajji .dJ jj dJ»L2i^L autonomous g^igJI Ja^lII 

Layer 3 LWAPP laHi 



5J 



Gku SyitBins 



Campdry: 'Cisco Systems 
Ffe Vftrsien: 4.1.10Q.1332 
Date Created: (K/OS/iflOS 06:17 
See: 2.9^ MP 





Upgrade Tool 


v3.2 



?j rr,1 linn wt tunrn r , mrri ff no j> rir< ftt^fiiManltumliTi.iJM^IiJ iimli 1 ml. 




nllMiiniiniliil h> 1V iwwn m«h pc-.if» «^Jf um 





J 


Upgrade Tool 



■flit 1 04:CCi^3G b&W>^L«kI14wieA: rut, br-irtj r*£ns l*>: r*±.o <3 is in aehin di-titl* snstj 



SjJllJI /'iIqU^ II 1 ^2 \ tQ t ^j*i**t<*$\ 2jl2jU 9 



^rj^ptj-^-liflj^jJ^. FwA | pQ^ BT - KtOrifiltD ilVliftfl PS"Br- IO«C 

^IrCFROIO-S-tFDOWfi L Lro sto-LocgI cn Interface IktilPadjol. ri-orcBd rtdta to up 
fiV&-&-LJ0CClrOC=r.SrSftI5r;P: Lpiei^ to hsst 255 r 255, 255.265 ita-trsd - CLI iruu^ed 

"A. LW: -b -LliW.liD : [nierfacn lk:Vi1SEodk,Dl . chtrcnJ U? ad^imst^dtj vslb *»" 

KLIrCPHUIO^Kmnm: tin* priAecal <n Int*rfjc* DstllPfdl t)l, c^ts^ tfl^iu \n <itm 
M.HflFP-5-CHflHtn: LUPPP chnnsisdl itote to CfG 

sa u*P-5-CHSfCED: UHflPP ****** st^i:^ Ll. fi>#l 

HUVP-a-CHOHTll: LUPPP ct-^r^t «t«t* U» UP 
XLIhK-3-LPinm: InterfoDO Datliffadlc.], c^o-«cd ilete ts ^ 

JlLW*P-3^a_[C^lTEl^LTlTLCGt Re.=eiuEd HP SysiDj IP ffclai-flis (255 . 255,255 ^255} rjanflBJura^.Lan T 

-r-.|- - r -.-i ••- - r. - r. r ~L :. - - • -i — - •. > 

a.Xr»:-3-i.J > J)CH , ii Ir--t*rf *s* PatiViMltel, e*wted i.o 

^l^cmrJKP-^-UHEW: Lim ^fiVKil InwrF*e* PstilRMliol, ehtnged Htwu w up 





> 


T 


:lT;*J5:bi:iQ:6o 


0 6 r (SO h DO m DD f 


Enable' REG 1 





* ** *♦ ~ 7 
^ij (j9^-i (jl 9 l^«"«^> LlGj^j ^Ul 9 SLuaiijj II 

pL^-ul ^ J£^/l ^ >l9jiKil "subnet 

♦♦ 

dJjjg iIaj jolio-j SLkjjjj (jj'9ri *^JJ^ 9 SjlSjUI 3 1 Lox 
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9 ^JgjiiUl ^ ^ Iajj ,<u Lightweight AP u Jj^iu a±su iLojUl JUISI ^ 

** * ^ s ******* # ♦ 



■ 1 1 i ■ * I i ■ 
CISCO 




Wiroloss Control System 



Add iirtonofflom Access Points" 

f 44 l-H-mit Ttp-t htm lrf"o 



3 



3 



* 



TitM'rinml 



■ ■■■■ 



L*£ id on 



Limited standalone AP support 
starting with v4,2 WCS 



wcs -■■ aj-iiui aLijkji 

9^ Wireless Control System >q>ju*i 
9 a : <i...N» a<..r.n ^ jabdi i0 i^i a ji 



♦ ♦♦ 



IP ArJdn«5 Type Status 

10,9,4.133 Autonomous AP Acld'jd iucc-Jiilu ly to WCS 



J 















«j 


□ nam™ J*™* 


LP 




Ml* la; tt-JQiv 


Ty#r Hotel 


Itr DHf SUUf J*™' 


JtadiE 
thahui. 


l~l to H:l7iH:b9:lf 


:<M Lfl.'J.-*.] Jl 


».••..; •: 






Otm* * 





♦♦ ♦♦ 

9 Linux Red hat Jio ^ijnj,.,,n jLolo 

Windows Server 

JliiLIal joj *iEi cuJLj (JaJI 9 4*2 jIa^^I ^jjq 

LsllL J910II (j^<>; j$^9 gjQ standalone 

jjdjjulJI IAiL J Mil (jjo L^jjI jI joj dul Laj 9 
upgrade IaLlSjj LlIq 9 ^LLosdl (j^lj L^Jx <jl L*ojI gjJaluxji QjLo 



JLajI£JI joB joj Configuration > Access Points ^ J^jJL jo£ WCS jjqjju^J 2Uojl5jJ( Jbiu^Ji ^ 

^Go ,oj Autonomous AP^L^L^G^JIjL^^^I 

OK |OJ /^i 19-j y^*^ j Lqjq L^jjx 9 j9jjqJI ~t\*%\< 9 ^ « 1 |j.i..i<^l ljLjLlj JLiuL ^00 

Configure > Migration ^ LWAP ^Jl cOjlSjj Laujp gJol^ ^Ij^j y-^Vf' ^ WCS ^>5lLi 0' J >?^ 

GO 9 Add Template _j jo£ joj template 

\n\\\c JjqjlII Ajp / .111 





Conlrollcn 
CDfitraller Ternclates 
Cftflfifl Crabpt 

Access Points 

Access Point Templates 



Migration Templates 



Chakcppinbs 



Add Templflte.- 



v CO 



- Seledr 3 mmma nd 

Delete Templates 
View Micnatpn Rtport 
View Cgment Status 



Migration! Template > Template 'Migrate* 

f.rnr r-j-1 



tl|iqrailr Up-llDirt 

H«4jin AP HouNam* 

DNS MUrtS'r 
Don**-. Namo 
( u-iitrullrr UMinlv 

us-tr H jit* 
it tp nniAiU 



TflF Svrvnr IP 1 
Fil* P*h 
hi* Njn-rt 



C nft£i-l 



H.ijr^tt 



fjEnabkd 

□ Eh«4l*d 

□ En-sbkd 



10 :*.4 Lu 









15 -9<* 29 



in 9* to 



T 



You cmi ■jpp'i' this- tarrfWp to convert Che ]OS*Pr rnerMqod &> WCS or by •mporbng the fric cjrttar^rtg [OS KF mtVrmMrtwn ir»* wen torm-ri 



if 
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^ytonomcui AF Jit 



■ ."ii.vr.l 



|f I 

1. 44 ill 



■i*J I'" - r, .. ... ? 



Once added lo WGS, 
standalone AP can be 
convened to LWAPP using a 
template 



** 

Convert -oj L^ajjj 

jJgjIi^JL JLtOJ^L WCS I nl 

lLi^j (J .«..t<Sfi « 9 TFTP server _» J : joj 



jQtlQJ (JJLLJ 3 ilil ill JQ^IA gjQ J iQ^Vll i jOgjij jQJ 



II* iN-Jilir h h S^lm Prc-grr-.. 



IB 1* 1J] 







ft 




r tfMiJ?.WI L!» »JT H bL:IMj IIM.kl) tlZ^ii mnLirwl 




* 







slhM iljgj^ ale 9 SULosJI 1 1 lIIj iM 

clLqx lILlLc i La i Loj 



♦ ♦♦ 



♦ ♦ 



IOS ^1 LWAPP ^>o Jj^UI 

^ .1^1523 oasu Downgrade Ja£ <jl Standalone AP ^Jl Lightweight AP ^ LhJ Jj^^lll gjoi^ 

Mode -j; 2 9 i 

♦ ♦ ♦♦ ♦ * ♦ t e 

ale ^fl lIU J jo-u 9 djLfl ojq^qq I) S^nii II JjlL^j -q7 i (j I <x I iq Vi aIc AJ^f cULQ jJgjIlSJL Jo^iiQ l2j J jg J ( j.»..«<^)l (J^f 

Mjjq 1 250 . Vi J9-J (jiiin<^l £jLLo jb?. 1 Llj^aj La^Lo *i^gj (J*UI 9 mode jjJI ^lc Uo.^fl 9 txhkAxj ojLcI 



i 




*MVK £ ETmEPSET 1 




6 



1 


E)t 


pouur c^nn^L'ior i -56 VDC 




3 


Console port (RJ-45) 


2 


Ethcrficl ppri (RJ*45) 


4 


MOPE button 



InFr-i-iirf Prntcif**! [1! i'/DP) Pr'fif rffl-m 



General 



JJKJ 



Youcangel IP sprigs dSTfTicd-sulcroAcdly f p?Ji nelwail- snapcils 
iNs cnpdbit^ Dlhefwise^ jjou need to ask ynu nrlwnk admrcli^cr; \a 

f~ C blan-an IPadries: siiamalK.jlj.' 
f* Usei ihefnlDwng IP addies: 

IP«h**B- | To ilT 

Si^ielrnask 



0 z 

I 5S5 . 295 »S 5" 



[: flail g-Hcv.,>, 



r 



Lse Ihe^DlDmng D^Ij sctsti addiessei 

Prewired DNS ssvbi: 

AA-intfiE DN5 server. 



Advanced. 



am 



Eancsl 



TFTP server 9I SolarWinds free TFTP server Jio 
Iaa cd lIIljIj ^ ^1 Ja5u ja£ joj recomnnended by Cisco 

" yla 10.0.0.30 - 10.0.0.2 Jbudl 

o i U7../; 9 TFTP jjdjjulJLj ^j^LkJI .iKq II i^sc.Xq ^ j 
25d.-c1250-k9w7-taM24 Jio ;<i.nm 509^ ^>q L^Lla^j 

JALtar 
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Cisco Aironet 1 250 Series Access Point 



Eipand Ail i coiu 
Lalesl Reie-a-ses 

12.4.1 Qb*JDA3<GD) 
All Rfli*as*S 
12L4 
12 4JY 
12 4JDA 
12 4JA 





Release 12.4.25tJ-JAl ED 




Release r*tf*s fer 124{25<ivai 




r Me In J arm alum 


Rctooie&aSE 







VilRLLCSS LAIi 

t1HO-iflw7-UiM24-25d JA1 lar 



1S-AUG-»I r 



wntaad 



A«|g cxr 



c1200-k9w7-tar*default for a 1200 series access point 
c1 1 30-k9w7-tar*default for an 1 1 30 series access point 
c1240-k9w7-tar*default for a 1240 series access point 
c1 250-k9w7-tar*default for a 1 250 series access point 




(LLloLII (jL^jQ jLlL^I gjQ TFTP £jQI_1J_1 (JjLAjIlLJ jQA jCJ 
J 1 9 nil jQ*1C gjQ JJQ I Ifl^ IL hliJ )9-J (J^9 
<UL^ ^Qfi Lq p^jll y-ll dl^LLU t -LS J Lift 9 illijftJ (j.t..»<^fl 

L-i^j cuLo POE jjx SiLbJU (jAijo^ cKinil) JjL£ 

' (° 9 ^jL^-« j-lc ^LoL^JI J-Ej |Q<mj u"n jQni ^pl.t Vint) 

3750X 9^ SjIoslII oAtrJ (jVi iQnt JJoijI 9 
*L>*£]I JjL^iu ^IjjlcI *LLjI mode jj ^ J^a^l 

j a Vi ^yLi ^Lutj ^j9jMj 9I (jgjjlic oJjqJ iliijgj (j.«*.»<Sl f 

LED J^LJ^J y <N' ^il^Ij^Q 
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TFTP 9 Console <LiiLii ^dJj ^jl^ 9 LuLla^j a^...:n ^ ^ j^ji ^ 



Tftpd32 by Ph. Jounin 



Cliirent Directory IQATF TP-Rod* 



Server interface 1 1 0,3,4,10 



Tflp Server | Tftp Client 


Sysbg server | Log 


viewei 


1 






peer 1 


file 


slaft time 


I progress 


bytes 


10.9.4.133:49237 

k 


<c1240 k9w7 ta . 


1H44:OB 


3% 


520192 



3" 



C1240 k<Jw7-tar.default to 10.9.4.133 



File size : 55500B0 
5201 92 Bytes sent 28839 Bytes/ 




Controller CLI -'■ iujlUl aSjiiaJI 

TFTP server 

^JLUI l-iI^I jOJ CLI j >gjVt<[ I Sju^UI ciuLjJgJI ^lc Jg^jJL 

♦♦ ♦♦ 
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virtualization Technology Jl 



Pill II (II 

EGYPT 




^1 



«™ I.^U.OMI oIa Jib ■-.!<.. Ml ,oJLc , _lx Ji lsllj o' LLd£ LolU (ViJWIg 0 niln2l 

Senior System Engineer ♦♦ ♦ ** w ♦ I w w ♦♦ \s W V «♦ 

^ ^bd jju^ J£*u JuLiw JilSJ JLiill jdbdl ^fl .M<;AH O^A^JI 

llllllllllllllllllllllllllllllll Switch or) <>] ajIaUI ^ ^2 . LalajLLog LaijLu^g Lai^u /M< ; .MI 

^LqLqI ^j^^io ^1 jjq ajJjL^iJI i^qIqXvii ^L: ^ (Router or NIC or Cable 

♦Uifl jJ^Hj IjLoi) JLlLIXII L^aJaHUI Lfcjl $ lIUj . ni< 

♦♦♦♦♦♦♦ ♦♦ 

ljL^jjIj <jx j-lqju iliL^jjUl J pQ ; (J^9 A^lg j;?9j <jjjLuj^/I cLlLAjJI L^jIjjqjjluj JiJj 

♦ iIiljjuQjaJIg Ll^9 ljt<?ll ^0 (Jj-^l 



0* 



i .A 






u b w» t *j 



lo u 





3^>j ^UU ^^idl ^ a^j^JI ^ ojjuqjq VMware 2£>i (jZl 

^^^HBPjE^^B^^v H ^ tip? 11 1 p9 m ^oJix 

Jj^qj LojIo ihiin c\ 1 1 1 Vi II 
Cisco JloajLL^lJI 

VMware ^Ijjqjj^j Jib Ja50J Nexus 1000£jl1Aj Switch Jasu ^qI£ 



VMware L^ilg ^KiAJI ^jIa5lq J% & Firewall Router Ja5u ^uqLS ^^ll ^^^9 

VShield 



Ll^9 I9HUI ^0 iliKini II L-^gjQ K 1 1 2L^H iliLEL^ oax ^jjq SLLloLu ^uIaj 1 9^ Ijll LULEjq 09^! 

VMware ^ir ^ 
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d 1 I 1 Vt II LjL^g lj«<7fl iljKlnl I) gjQ JjQ-5LII L-jgXujI (jr fl OjJLL^ dlnl'l I <LjL1i2j cLJjL^lJI l!jL^LiUI (J I Ljj^j La£ 

( Switch - Router - NIC - Firewall - Cable ) jlittl ^9-1 Mio 

ojjJji SjLA^gJ) ililjjbj II JiJj jjg <"tng..« <jx ojLx ^yfc LojI ShiqqIo jjlx ~«l *iq<^ II oAA J-£ SjJLplJI 

^juj^I CHJ <9>JI (^9^ 



Ll"J HP I i"n! 1 1 

tdaptn-L 



cLlLl^j dS ini I 



♦♦♦♦♦♦ ♦♦ ^ ^ | 

d inifi^ dS i mi I 



Iu-lLJ p 1 i 




7 

N 



VMware Host <uk jl^l ^ui ^j^SaJl Ah^i o' 6^ ©j 1 ^ ^'r 7 " ^' > >jl**jJI ^ ■-■»<;■*■" 5 >£i> 

(_£jJLa Switch 3 ^ '"'"^ lIIj^Lj lIIi^j^ dJLO 

^jKJL J~~" ajlLl^j ^Lij9J9 Switch Ja£ ,<uj VMware host J ^Uaj ^9 

Cable ^^jjia ^ (jSjLaaJI Switch J^IaJI jijJu.iJLj ^LJI 

JL JLLaLo 09^9 Virtual Machine Jl LL JLoLLII Jj^luJI JuJiijl vmware host Jl ^ ,oj 
^AjliJI jdLaJL JLaj^l Virtual Machine Jl ^LIAjg ^a^gil ^9^1 host 

jL^l ^ju^ 

Vmware ESXi Jl ^^Ic ^^Lpa 0 »^^n j^-- 11 j"j . 0 SwU» ^jKJL JjIIj J*aLa Switch 
^Ul djua^gJl ^Ljj9jJI J Mi. <jja Virtual Machine JL J-^"- ^ya^g Switch ixLc Jaaj ,09^9 host 

Virtual Machine Jl ^ Sj9^9aJI iLuajagJl ^19^19 3u 





Virtual IVl 



VI Hual rj wo rk 



VI r 1 



I awllt:lm* 



Adaptors 




r--J 9 t-K/v*^* r ^ 1 



SjLLplJI aiiAJI ^ (j^jliJl ,oJLaJL Virtual Machine Jl jLajl ^gkJ J^ii 



ji^l Jac 0^*9 Virtual Machine ^ ^jgij ^9^9 
VMware a±z "■'<■■■■" ^^£^(1 ^1 ^Lqj^II 5Aa 




26 



Issue 26 -May/ 2012 



Vir T i i, il I I I it ti H ■! 
rn.K 1 ~-h 1 nt*- 



< I I | ■ I r 



per virl i 



VirTiJ.il -.wile li pc:»rl~. F >c-r I it 



\fiw T i ii i I ',wllc ti lion's pt*r *,wil( li 



Virtual switches per host 



LJplinks per virtual switch 



Uplinks per host 
Vir 1 1 ji 1 1 -.witc I 



port groups per hosi 



f^yslcal gIOOO Ethernet 
host 



apters 



**hyskzal B 



m Ethernet adaptors 



■r host 



Physical 
host 



1DD Ethernet 



JVl .i k I 

-4 



u rn Nil 



IOI6 



5 1 3 



32 ( maxl m u m t ested > 



20 (maximum tested) 



( m ax I m lj m c 



: jli^j Vmware ESXI Host JI air ^jgliJI ^ 9J ^ 

■ VM Network - 1 
VM Kernel - 2 



ij£ 5jL£ : VM Network 

VM JI L&j J^qIj ^Ul .ijgj^JI 

^l ^9j£JI ojL£ : VMkernel 
SAN and ISCSI JL L&JMi^ (y> J*alj 
and VMotion and Management 



Virtual Machine ^ju J^jjjg Host VMware 



VMware ^ ^Liu^l flop! 

(Virtual Stander Switch (VSS - 1 
(Virtual Distributed switch(VDS - 2 



Virtual Stander Switch 

lg jjqjjuj (jg/f nio ^lc JjQ-5Li Switch <jx ojLlc gA 



vCii". 












-.-fHiL : 

















( ■ny.it:iil/Vlr rural Sw^U:h 




VSS ,1 
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Virtual Disturbed Switch 

Virtual Machine J£ Jju J^jjjgVMware Hosts ^^jqjj^j 3^ ^ Ja*j Switch ojLs 



let wo i 



i — i 




VDS m» gi'^Q*! QJQi^ 

(j olidl gl ^jliJI ^> Jg^l ^ o^liJI Lq ^ VMware ^ Switch £1^2 u — ; lxu>5lj i^a 

VDS Jl I9A9 (^-jIIJI £9iLI HqIa^juajI *iic o^x ajlgi gjJ^JLj a^g-j 

Virtual Machine J£ iu J ^19 Switch J^ajg ^I^jju^j o^ix ^59!^ ^ Ja*j Switch jl I9A9 
^Jx ojaiLII >t5LJ9 VMware ^LJJ^q ) HA and Vmotion Jl a±l 

SjLfl *i^9j SjlIx Jjq-slj ^211 jjqjjuaJI cdL^ ^IjjqjjuaJI (jju Virtual Machine Jiilj 




Switch jjl£5 ^1 £Hhj o- 1 ^ a* o^ 1 Virtual Machine Jl (VDS) Jl 

JjJg Switch dhnilg-j JjQJLj I^K l^jIjjqjjulJI AjA^JIjjqjjulJI ^Jl jOjAoJI jjojjuajJI (JjQ <Lj cLLaLoJI 



Lo^iis <u2 Virtual stander switch Jl ^ ^9^1 ^l^i^l iULi ^ J 5JLJI 
C>i)^j^ lAIH* Switch ^1 jl^9>iJ>jbjju*j ^Jl JSiijg Jg^/l^jju^JI ^>q Virtual Machine J£lij 

Switch jo^l ^^iilj Ja5Lj jognj ^2i5LlJI ) £jL£JL JL^j^I Jx Virtual Machine . fmQ?1 JUbJI Ijj& ^ 



VSS Jl (JX VDS Jl £gj (JjO illlnMQnlll ^ II j_^f| l2jIjJUQjQ-II (j^O « Lu^jl ^9^ 

Network Policy - 1 

Primary and Secondary Vlan - 2 

Net flow - 3 

Port mirroring - 4 



28 



® NetworkSet 



Issue 26 -May/ 2012 




juHjlEiJI /m< ; .*.h VLAN JL cui.ii ^ 9 Switch's Jl ^> 04*9^' ^ VLAN o^i 
HA and Load Balance for Network Ja*J L&Lq jLxlL^j ^Ulg Network Team cU^ll ^9.; 

oa^9 ^EjlE^JI jjqjjulJI (jr i ^nin^ l2jjL£ <jjo jI^Lj J-^-u <jl (J*n q i ^ q^^JI Switch <jl <jx ojLlc ^yfcg 

JjKJI 9 I Switch 9I JjjKJI ^ aKiliiQ ^9 cULi ^ a^laj 1^9 Switch jI^L SlL^lo Jjg^JI 

L^il ajsu 9 Switch IAi3ij aLolo VM <jl jjIIj Lq ^J 1 ^ ^ c^^ 1 Switch Ja*j ♦ ^yk^JI 



ESX Server 





a^LIljo cwuLgUI clL^JI julij 0' cliiiJI cU^LUI cbuLLdl up ^ IjI A^Jo 



www.vmnrian.nrie 



Vmware cl^jJLi ^LLII ^jllll jl^JI LJaJg j<- ojl - « ililnnQni ^lc jiJ JLiLo lIILLl <J9^! <-&9^i 
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oiclinJI 




SjLCLLoJI jLLQ^fl JJX ili^L^J^fl ^JLlHj (JX 



£ £ 

£ £ 

^lx LULfijQ ^i) 1 QJJZlluJ ili^/Loj^/l cLq.\ Vfnlfl II 

jjo AJAsd\ a^$j ( Satellite Orbits ) ^ 

j(Ul >aiUI la* 






ft 


1 


w 




MEO 



GEO 



Satellite 
Orbits 




HAPs 




r 




Altitude 
(km) 

35,786 



1 5,000 



5000 



0 



Upper Van Allen belt 




LowerVan Allen belt 



MEO 



LEO 



Earth surface 



li^ I I jnKI I ^ J^.Tt I I OklA ^ »/°vQ *» 

Orbits jLmI ^uiiujibLo^jliJUl^idl^ 




JLiilujLj jQ^£j c cLj^aj ililh^o <jx ojLx jLoo^/l 

A±SU |CJ LAj-L^jg CUJL5L0 dUulQjl ililh^fl (JjQ OjLljl 

£ £ f 

•oLj^fl oAfli (jiig (jjiil djuiojl "■lU^rt oL^jLj LlJLujI 

£ £ 6 

. ^1 j^l .fiJI J^lii^ ^L^u^l9 

♦♦ 

♦♦ 

(jx ililh^Q II (jju L^LoglsLoJI JjLlj jo-u 

£ £ 

^LaiJI ^aill ^1 ^LLJI JLujL aW>aJI aI^aJI 
jLoB^I pgsu ""^ (a Uplink) tuLoaj ■ Lo l-iag 

( satellite Transponder) ajlcLLqJI 

£ 

(jlaj^l ^Jx JLlqIuj^II ^Jl LfcJLujjjg SJ-lq1lllqJI 

( a Downlink) SLlL^JI oAil ^^jg 




program mlng 

« ource DBS 
provider 
broadcast 
center 
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Satellites in geostationary orbit 





(Geostationary Earth Orbit (GEO 
i9£i> KM 35,863 jIjjq tucLLaJI jLlo^I l-ia 

joLa^^l jjl Lai Jrpni^l Jgia ^lc (jlaj^l ^hni 

^piiu (jiaj^/l j9^j Geostationary jl^o 

** * * t ** 

GEO jLclSI (j I iji&j I.L&9 j9^ij (j^j^l LqaIc Jlcj_ujJI 

>U»»« (Jjq L_ujii ^B^jqJI (j-anj ^JLlj cLlcLLu^JI 

****** 

* u^j^l 

cUJa^J ^h5? 1 (jlaj^l (JX OA5LJ (J I GEO JjQ-Q jLLcu 

****** f * ** 

♦^j^l gtk^J gJj Lu>*i** JJLll 

(j*OJ^/l ^hnl (JX C^LlLcJI tl&J GEO L-t^JLX (JjQ 

Lo_£ ojLli^fl 4I109 jjALj 9 ojLli^/l 1 q3l!q - -lllj 1 Lqjq 

dL^l9J ^l^luj^/l J^A ^99^ j^jjQ jjoiUI gigjQ (j I 

broadcasting SjLii^ 

. ^ur.^il signals 



(Low Earth Orbit (LEO 
1500^1 500 ^bil^^^jljk^U^^GEOjb^^uhJ^ 

I^JI l_JLJJ-Q LEO JJQ-Q (J I (jL jLLaj >hnlll ^Jl 1 7 1 n 11 dJ&ijgjO illJU ^S-LJ^f cGI Lo_£ >hnlll ^^fi jTciQ I K 

f ♦*** ! ** f * ******** ♦ f ** 

LEO jUlqI ♦ GEO jjclq Lslo cLjjLILq jjl^LLII (Jjqj (j^LqAjI Llo (Ja*oaI J'sm 19 cu^ia ojLliI ^hy ; (jiaj^fl 

(jjaUl djJLc (J9^j 






Footprint 



Footprint 



(Medium Earth Orbit (MEO 
MEO jUai 0' I** £^ 69* J^9^ I8OOO9 jlio^ 8000 Chi ^ J 1 -" £^ MEO ja£ 

<j La£ uUL 8 ^Jl 2 o±J Lo J^l ililjIiJ JUi^j jLa£2l oAa 09^- ^A.Ujll ^ LEO jLa£2 aajLIlo 

Jjgia (Jjqj ; cul MEO jjclo l_j9jl£ (Jjq» LEO jLclqI (Jjq dihsl dnhio dflJ <jb jIIaj MEO jLlo 

♦♦ ** ** ** •»♦*«♦**♦*♦* 

d q 1 ojLiil 9 jplill 



31 



® NetworkSet 



Issue 26 -May/ 2012 






^3 








: l_jLl^JI mi 

Build Your Own Security Lab 

Michael Gregg : LiuJb 
Wiley Publishing : ^idJI jb 

Aaiifl 459 : tliLa-a^aJI ja£ 

2008: jl^yi&iui 




^ llj *J>I^qJI ^ "■-*>"*» LqaIc 
^ogi ^Ljl^j LojjXt *£^b£oJI 

♦ ♦♦♦♦♦♦♦ ♦ I ♦ ♦♦♦ 



♦♦ ♦♦ ♦ 




•C7 




dJLJal *oJ LJL^ (j±&3 Ol''^ * 
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a n \^v..i 0 II ^ 0 m Jljl j_s_qJI ^j^^ A" 

source Jl ^^Ju^ ^Lu^aAJI ^jLo^loJI^ 
♦^^±£9 ^.il^-oJI -'Uft^i code 

SujJaiJI ^ i .>>l^ 0 II ^.j ..II :4 J-l^-oJI 
^J| cLoLi^l Jj^/^S^-j^jjJLj J) I U^i-o 
^ TCP 5 ICMP JLo 1^%^ (3>J^ 
o^lj Josu Ju£ ^Ul£ 3 L* j±L 9 HTTP 
3uoa£IoJI ^LlIqIJI^ PingJI Mlo Jjl^l 
.Port Scanning ^.i Suo^l^ioJI 

cLl^LLJI (m7 jj^jl^llJI jjo (JjoLsllj : 5 J-L^iJI 

Sl^jjiJI ojIjI^ routingJI ^X^^j-h 

U^^l duojMJI JjI^j^I :6 J A II 

♦Lg^jJ^j ^1 JjIajj^UI^ J^l >LkMJ 
jLlq jjl^A^ (3>l^ {-a (JjoLslju :7 <J II 

^ ft I V ^ 0 1 1 J^jlj^jlII^ j 1 1 ft.^tVll 

(J^slj ^^Ul cLoj^J^JI ^1 J3j ^ ' J *8 J II 

SpywaresJI^ TrojansJI^ VirusesJI L$j 
.aii-pJI ^ol y±l\ ujtLh y±L$ WormsJI^ 
j^ijV^i^ <LjLq_2i <^liAjS J-Qjiij :9 (J-l^-qJI 

♦ (^llJ^jI^JI 

ol ilil^l ^qju ft »< ^jjIlj :1 0 Jo^a-oJI 

.((IDS Systems *'~< : ^ ^l >ii^l 

^.ii 2 qj^Juaiq II J^jJ^aJI ^b^j :1 1 ^ ft II 

♦♦ 

LfcjjL^jQft, "«l ftlj V-k^fl J 1 iftc" 

^y^l^j 1 1 r J v> l j » lv< I I ft Ljj-^Lij Lq^ 

♦♦ 

a n ^ V . . 1 0 1 1 ^joIjjJI^ ilil^J^fl L_licl ^l ^l 

.Google books 



♦ ♦♦ 

F XJ duQ, 



^3 > 1 UV II ^^b^jQ « II ^jjlJI 

3.^9 (Ji<nn 1 1 O0^,l ^-jLl^JI t ^ I q9 II 

♦ * - 

♦♦ 

(JJQ Jil d^^jQ |oLc J<n1 j <>£-l9 

.ai-Ll^9 LT 1 ' ^OJAllll 3I ^J^ l/Snlll 
(Jjj±La11jQ (JiiilJ clLq^L l-jLI^JI Of.\j£ 3<Q J 

(j-j jJI ^j^K .v«Sl I M t 0 q cSJLjLlJI ^.^ft II > 
tP& '^^J IT Jl JjLlujLljLj SLajiLQ ^o^jaJ 
J;;-' ^^ic Lbjl cdJLUl J^aiJI (jjQ paJI 

0^ oj'^iji o-jUI oaL^ij^l JliJI 

(^^ j « ft^'Vll J3 J ^ « So^aLkJI ^jLual^o-ll 
I \ </k^ j_jLuJI J »^ft H ^Jl ojjIiLjjQ dj^^UI 
£-9*^9 0 1 1 ^jllI^j (J.^ jjo lc« 

♦♦ ♦♦ 

^aJJ SuojMJI ^jLo^LsloJI 
3 pJa jl -jlll^J-j Sllqjl^ ^Jl J3j ^ 1 J : 2 (J-l^-oJI 

l_jjL^JLII ^.i ^ qjAXuLqJI SLoIjlLoJI J «q^«Vll 

♦♦ 

d.iLbl ^j.i< < J Mj^ J^j_LjftJI cLqJ^ijI L^-L.i) Lq-j 

VMware Jl^ ^ jA^fl ^jI^I^ ^ol >dl ^1 




X L 



33 



Issue 26 -May/ 2012 





Issue 17 

Magazine 

I Netw rkSet 

First Arabic Magazine For Networks 





Magazine 

NetWftrkSet 



<-!T!RK_ VC'JR CHOICE 




Cisco Systems # 



-_n_^jl'il yjj _U j L_J 

Cisco Extreme 

InTlljlnWi g tjL£jJJjJJ 

■^j- SI. i.i ill Jl S-_i'«il (jl t^j-SI mil (^jluuijuluJI 

ZigBe-_iit*_j 



iwuiw.net worbset. net 






h_iw-_)I2 ■ Fr»e ■ WmmiUHlllim 



MQ.M MlHtl201_ - En* ■ wwjHtlMKH-lwl 



NaU WHIJ012 - f-t ■ umillWIllMUlU 



NetWork Set 



First Arabic Magazine For Networks 



T Server ,ojIA ^ydl ^lii'i ,J-n ^— ______ 

1 1 ri 1 1 1 1 



///MM 



(JuI____iijlI_ |oL__u _jGi____jI 




1 K 1. 1 1 Jjjajjjj |J i n ^.j-i I j 3 II i a -i 1 1 g| ■ nln i l i ji ^n-i l 



NetWork Set 

NetworkSet S__Jj_ 





Migration or update ? 
,l ts your choice 



HP — Liujj— iajAA 




NetWork Set 



First Arabic Magazine For Networks 



/J 



Samba S 
Series 



» Server 

s ■» 




Access Point 
Modes in 
Wireless 
Cisco Network 



t_i\J_3_^_--_| ^jjojUI 

Windows _>erv eytackur. 



tJi__c__ljl___l <■ .TiJI <_y0___ d__voJ 



» Troubleshooting Ji -ici$i asA 
ft com pT IA djaJaLoJ las _ 



Bidirectional Forwarding Detection (8FD) 
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v9jljJI <*\ Q i iVi 



Fortinet oj&ii a,^.^>7«^ 



Fortinet 



selrazek@fortiserv.net 



iiiii ii in 

■111! II I II 

EGYPT 




<LlllqLLqJI ^JLUL^ Ll^^ 1^ *<? II jK? 




♦♦♦ ♦ I ♦♦ ♦ * ♦♦♦♦ 





For?iC«?*3D0A 



■ 3 * 





(j-ol 0^4^ ^-qJIx^ cr^LJ J j^i^o ^-J ^-J 

♦♦ 

oajIj <LjL£jq 2uaL^9 "'«■■■' ll l >jjqLj^ JjLq^J-slqJI 
l-j LSiysuLa §\ ^ol_c J < ill j Sl^-lAJI j_^b JjLqj^JI^ 

•«UTM» 

ISP» J^j >Lj)fl JjLqjA jI^joI <jx, ij^L^ioJI JjLS jAJI^ 
.^oJLsJI ^^jLlllq ^Jx. ajlo^^JI ~«l ^ 11^ » 

Sunnyvale, SLLjajo ^ — y/ 1 >" 3L^ >J ±JI jJLq ^Ej 

.Calif 

Ken Xie SlJ^jI^j 2000 ^ ^ b 

S IJLj I ll ..1 II ^gj l ft l 7 II j I J^J Iq {J'« ||q (JjJjjJ^qJI 

.« >hH3^ 2l£ jAJ l±Ij Aiu L^sllj < oj«NetScreen 

l2j ill I Lg-u±JLujLj J-Lq J-LJ ^j-Jj^.i) c " « ~ Lq LqjIj£ 

f. 

jAJ Miojo 65^ oU ^'^l " 2 

••i<jl 0 II ^^Lujjq ^ I r, 2LjjU£ 
.Jj^ ^ nSf ^ *ij^ i<..i II U^..i i" - 3 
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r 



GROWTH 



1. Extend 
UTM 

leadership 
with n ew 
terhnnlnnv 



■ ■ Forti 




I 




Firewal 




2010 



2014 




OJ t QQ II l— ll Q nl II Jj^J ^^JLUI J^A^JI 

,".Kj .7.1 I 2 LlajUqJI ^Jj^iJI (jjQ J Aid 



Product 


Firewall 


IPSec 
VPN 


Anti 
Virus 

(Flow) 


IPS 
(HTTP) 


FG- 
200B 


5 Gbps 


2.5 
Gbps 


200 
Mbps 


650 
Mbps 


FG- 
300C 


8 Gbps 


4.5 
Gbps 


550 
Mbps 


1.2 
Gbps 


FG- 


16 


S 


1.2 


2.5 


600C 


Gbps 


Gbps 


Gbps 


Gbps 


FG- 
1000C 


20Gbps 

40 
Gbps 


SGbps 

16 
Gbps 


1.5 
Gbps 


3.5 
Gbps 


FG- 
1240B 


(44 
Gbps 

w/ 
AMC) 


(18.5 
Gbps 
w/ 
AMC) 


1.5 
Mbps 


5 

Gbps 




iiij ^j^iJ o^xmJI Su^Lxi^l «fortigate» 

♦♦ ♦ i ♦ ♦ ♦♦ aii t ** t ** i ♦♦ii ♦ ♦♦ ♦♦ 

^JJ 9 & rQ ^ n i l^.m i <i\|<»»ll ^1 il nji i Um II n ^>..< « 

S Q ^ Q p J QJL I "\\^ ~JJ Q I I ^LLjI i^A J-LJ 

UTM Jl J^A^ Alt ^ ^1 SlLqIII^JI J^LJI (>Q 

(jjQ UaLjI L^JLq^L ^ <j .v» 1 1 2LjLq^ J 0 .viVl J_j 
DMZ JL 

a^I3% ~.in. .uvii ^^ic ai y.y.o &Core network 

♦^jLLJI 

♦♦ ♦ 

: S^AjlLqjLII J)j U 11^ lZljl^ ^^-jj^-q £aj dJjLLo - 

J^JjjJjO Jj^ (J_£ (J I u 1 9 q 1 ^JjqKTo lIjLq j_k |OAEj ^/ 




^ WAN 

Acceleration 



VPN 



Firewall .■^. J '>v^ 

.nttvlrusS 

IPS 



Web Filtering 

Wt 

Application Control 



Headquarters 





FortiGate 



Headquarters 

^Jl J^^Ju \ilnTll c 3>kJI ol A^J LLa 

a c\\<"j cLLq K 7 o o a^I^ <LoaA L^Jl A «« ^ (jjQ lHjI^lqjq 

ojIj^[9 j i-Q II 1 1 dJ^_uj^ ^Ij^/1 <M7 i (^-ILc- o m^l^ J_qI 



♦♦ ♦♦ 

ft oJIjI (j 1 in 1 ^> V 1 L^JMA (jjQ p^Ej dloA (JMA ^jjo i*in 
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I 1 



(j-o-uoj lIIlq^JI (j-aiu Lq^_q_c a<j .Vi II ^| 

lILlqI^UI j5jjq *LLjI ^JI^jLkl ^1 j-ub cLLqL^JI SuLq^JI 
>A9d cHJ5^-"^ ^Tmol l ^[9 (>q 

VPN Jl (^jO Sli^iLoJI 

J^jjJI 3Ub i^uit-.j J.^Aj IPSEC VPN - 1 

l^io J£ sites 2 chH 

^jjJa ^ ^ jLc >J£fo£ jL^i 0-0 Lfro h Vini l LJajl 
l-j ^-ojjxjLq L^-J (_>aLkJI agent (Jl l-jll^-uIJ 

♦ forticlient 

J^AaJI 3Ub J.^Aj ^| ^ SSL-VPN - 2 

3 Lluj^ (jjQ j^I <iJLL^9 JjLj^jq ^1 \9 1 ^ <jjQ 
^li^j Mi* SSL-VPN ^ J^aD 
HTTPS protocol ,RDRSSH,telnet and 

.etc 

L2TP - 3 

PPTP - 4 

^1 <jl r\ \^ 3uU^ (jl^i^j ^ 4 5 3 (Jjq o^J^ 
^9 plain text oj^^ J_l£jLuj9 Jjjj^j rinK ii 
^iihTmig encryption Jl <cl^jl ^ ^ ^1 a^^j 
l^J CLI J MA ^ configuration J^ Joiii 

cjljI jliLti^)/! ^I^jI (jjq ^^I^ GUI interface 

(jjQ j y< A^J lILI J ££9 (3 ,1 r D ' * * O J * JJ_QjQ 

.vpn Jl (jjq ^^Ul lii* (j^ixbiij *M^sJI 





1 



Antispam/ 
Antivirus 



r 




^I^jI (>q ^ ^[9 JjLu^^jiJI ^Ic <jL£uj J^lj |03-oj 

Jl ^.i U£ sjgnature L7 lc l*Lb infection Jl 
signature or web or ^.i ,~n^i ^1 ^Lc J < A ^ . ips 
♦ fortigaurd dd^ Jjimpll application category 





c 

aslj (jx. ^ < 1 ilj ^-Lc J^AaJI (3jjoLj^ 



1 



Application 
Control 



r 




^AALulJ ^^Ul^ UtlTI Jl ."Atj<es A^l 
^.i^jJLoJI n i 1 UVll J£ jVl o J_oSLl 

d 1 C, Sj^L^JI -LllL^ ^_Lc j-k^fl J^JjQ "J Ji) 



1 



Web 
Filtering 



r 





JMA 0-0 ^JLJ^JI ^I^Q JA^i jlii J^iLJ |Q5-OJ 

JjLc^qj^jq ^ I ^- ~ clIAIaj 3Jj_kjQ JjLjLlj ojx^LE 

jijj LuojI^ ^.iS I5-0JI (jjQ 3J.XU cLl^IA L^-Lq oj^^9 J^ 
J) I ^- Liojl (jiLojg <L^L^JI -i ^ I ^jlqJI ^1 l-l^JI 
SlLqJI ol^ "fi" ^jj_Lj j j_2ljq ^-q^jq ^1.09 L^JLq^L 2L1o 
J5AJJI o^-oj Lo J^ ^Ic J^l£ Vi J^3Lj ^05^5^ 




L^cI^-jL Jj^L^JI JjLo-^i^ (jjQ cLjLq^JJ ^ojA 

JigySLQ $.&Iq Jil signature ^ J^iiii^5^i SiLLLkoJl 

dl&iu (^Ul Lq JAAJ CUJ_C ULLJ9 l^LqJX^JI ^l^-jl (jjQ 

^b^U cLj.ii I jjq J_o_5Lj lIJJa^. L^Jjq <c jjq 

jxc ojLj l^JLLl ^LS IjI^ ^jq^JI traffic JJ ,UII 

^.i J^iii A « ^ « IaiL JjLqj^JI ^jjq Iai2^ j_ljl5Lj 

.signature JJ ^U-lj a^j <oJ <juI 3UL^ 
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i 



Firewall 



LJ 




Antispam App Ct 



Traffic Shaping 



k 



Virtual 
Appliance/ 
Virtual 

Domains 



1 

r 




domains Jl <jjq aaslI z±±* ^j^iJl c:.- rA " 
diJL^V-DOMS or virtual domains l_j J> jsuIa 

jl&2> ji^l caul ^ a^I^JI jjo JjqLslG ^LjI 

L0JUQ9 3ujUi^)f^ Sl^^xJI ojLj u 2 J3 j^uii\ I * V-LANS ^1 ^imni .i^JI domain J[ 



Gpbs throughput 480jjq 

V-DOMS or JL Jijsu La 5 I 3u^l>L^M 

La ^1 ^ox-^j Ajl ^tp. virtual domains 
J^aLI Sujliol ou- V-DOMS 3000 6* -j>*j 

IPV6^ 

fortimanager&fortianalyzer ^■■^g" c>£oj - 

(_Lj-"j'3 





♦ M I ♦ I 



FortiGate-5000 Series Blades 




HI*!** 



r ,-, "h-*-h. h ,:" 





^ 1 hi 



ISP JL Jijiu Lo 3 \ ^ yLS2\ ± 9 y*~ 



40Gpbs throughput ^Ic cjlLq Ji^Vi rn^ j^jLlJI 



V-DOMS 300 - 
IPV6- 



cLlujLLj cLojLlJI ^l^j^fl (jjQ (j I j^J LL* (3^5 

Lg-J JJ^^J dJ_Q_ll oAJh J-LL^ ^-Jj^iJI (jjQ cLLlSZjQ cLLfi 

Service provider 
FortiGate-5000 series chassis-based 
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FortiGate-3240C 





J-ua jj^I^ tIj-09 ^.09 < nl?^ o J) 1 1 hi 1 900 (jjQ 

"il n 1 1 UVll ft.\^«..n ^Lll JjIaj J-^UI jl^^lj djJj^l 

APTS or l-j jjljLq ^.1*9 j^I^ ^5 ^ ^KiAJl^ 

Advanced Persistent Threats 
16 aiL^L 10-GbE J£ ports 12 <uaJ 
Ji^j ^ erJLUL^ 1-GBE I4L0 J£ ports 
SlLqJI oajz Lr L ports Jl jjx. ^^i cLoli^ J^^jLi 




FortiGate-3140B 




GbE&12ports«1 IOL^LoJ^ ports 10 (>o os^t 

«GbE 



large enterprises 

3950B&3810A&3240C&3140B 
FortiGate-3040B 





«10GbE»&10 «lGbE» 8 cv* 65^4 
Gbps throughput 40 



FortiSwitch-5000 Series Blades 





<3-lj load balancing &traffic routing J^su p$su 
Gbps - 300 J^j Sl^j^ij ^j^iJI 

full duplex 

cLc jjjllj layer 2 ^^Lu-uq ^ i ^« J-o-^-j ^9-^ 

GbE fabric &1 GbE backplane 1 0 
Fabric channels 3ULi SlJLUI L^^J^iUJI 
static mode layer-2 link aggregation-802.3ad 1 

802.1 qVLANAS 
802.1 S multiple spaning tree protocol 

FortiGate-3950B 



Gbps throughput 120 ^jLc <jlLo J^^j 

J^su J£ ports 12 ojo (jl Lol 

\ 3 d*C&3 Ports 104 ^1 10-GbE^ 

1-GbE 



I 111 




■ ^ Ti I 1 I U V n ^jMjJ J > nV..i 0 II pi J^f I j-ij^ 

L^jlo9 a 1 0 c v . . 1 0 1 1 Lla3 I^-L^j-I)^ lIIjL^LlL^I^ 



FortiGate-3810A 




JLo C$>l-£]I ISP Jl JjQ L^jI ^ 

39506^^5^1 
throughput ^.i (>c^j ^o^ii j -qMi^^I 
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Small business 



FortiGate-100D 



FiiiPirineT 



* * * **** AAAA 

■ 1 1 ■ ■■ m ivvvwvvv 




FortiGate-80C/CM 





FortiGate-60C 




FortiGate-1240B 





Gbps firewall throughput 44 
GbE SFP& 12 GbE interfaces 24 



FortiGate-1000C 



mmmmmmmmmmmm 



. . • **** • ****** ****** ***** • *+*» * * *** * * *** 

******** ****** HtMM»tl»ttltit4tlt»»tM »»««*•»•«*• 

■ me::::: iimbm 



Medium enterprises 

AiLKtfLI 240B&1 000c 



FortiGate-600C 








FortiGate-40C 



F^RTinEF 



• 7 » mTU • 



• • * 



> « * 



• • • 



• * • 4 4 



FortiGate-20C 



F-ERTinET 




FortiGate-300C 



F:..HnnEr 



v* ♦*•** 





FortiGate-200B/200B-POE 



F=I = RTinET 






**** 














1ttttttttttt ^— 
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• a< ; Aii ^ VOIP Jl o^Ui - 2 

^Q,1 VfnlLj lILIIIj ^oLlEJI (J<q <K jnl II j_L£ l— i^i^n I) 

^jj>-5 cj^-II oJ^_^SU gj .^^11 o jLc LU SIjI 

VOIP Jl J-SUlla c^i ^^JL^j ^1 ol^l 

^i 3J9 , cLojLSJI ojJLqJI ^i Ig j c fcfiJjaju .i^-uj ^^-U^ 

j_LcLi (JjjLlqJJ SIjI jj^j -oJ <JL^ 



J_Lb.il LI LsLiioj JL^j^/I 3pl_oS* ^Jjq djj-aJLl lILjJ 

Ig-Ljp lIU^/ cLlLq£-II olgJ dLLil^JL^I oljl ^JjLjLlU (jl 

♦ d-QJ ji^l ^jLjU ^J-C J_l__l__-J -if) nl 




VOIP Jl J^Lii^JI J^J obi A^A^i - 3 

^i ojLc j-i^Ij VOIP J-SLIuq J__\ SLlLqx. 

^I^xAJL StuaLi. £*l >j 5 3W L$_ti <cLj ^1 ^Lo^fl 

^1 pIj^Ij ^LIU , NetlQ 31 J JLLag 

3 U-uJ^I (J^<> J ( ^J-C l-JLL^J (jl l-L^J l-J^I J^fl Od^ pLILqI 

: Lqj-lllq 

I AM II ^ n t^l 0l jfr ^ t^t..il ^jjl a 

3jbl oj^kl .lLc ,ol VLAN J£ <_Jx. 5 I WAN Jl 5 I 

S Call Management JLaj^l 

La 

^-0 Q I uJjQ l!1|Ij_J Jj^J JLuJjl ^ «<Q ; J„-fc • 

S (JL^j^fl oj^i 3j^i& j_j <JL__> 






cLlAjL^JI l— il qJL^qJI (J_lslqj jIj-o ^Ju-j jj-Sj Lq j_Lc 

"i ■•>■"<!.■ voip l^jlLc 31 u, 5 i a< : .-?.ii ^ 

a^aLaJI LiUI os* 'fl'; 0 "" A5LJ J<I v.qII ^ jjla^JI 

dL^-LioJI / Jx- oJ^a.^eJI lIiLLuIoIJI / -2Lj I jlp^ Lq^ 
pLulil (jtiQ^ (JLLq-II lILI *o Ail ^-Qr) m» lILI jJ , 

. VOIP Jl cyaliJI aLloI ^Ul JaLsUI ^ 

33^1 ^ QOS Jl 3lu^L1 Jjl5i£j - 1 

whip ii j : o j, a nn.q m..^u j^a-^^.ui 

(jljl^JI chH 6±i >^J' ^ 3u^»LaJI Jjjuu 

lj-U3JI d^SjJ^ (jl dj-L^jJI Ol^ J-SLJ A 1 i-LuJ 1 LSl^uJg 

f 

oi^ lIjljLuJI (jjQ ^-Lcl cLj^J^I LgJ cL^uzal 

(J^^jj-j jjX- Oa^l^ cLqjj^ J_Lb.il LLo-ii Ai dJI-^JI 
Jl ^^^j^ pldaJLiiL L^jI Lf-b^ijlg , VOIPJI 

c>o IEEE 802.1p Jl ^^9X & IEEE 802.1q 
DSCP Jl Su^l^ Jj^iu £Q -^il >lJJ Tag J^l 

. l-jIjJ^jJI ct J_c 
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a| LLlLc. ^oIj L^J VOIPJI tojJaj Jia 

aiiAJI * W oiU£ ^j>b o-^ (cOj bottlenecks 

Jl^ LAN Jl zAZiJh JiJj Ao.^ii kAsu 3 J^Lii^JI 
3.^^ ^ggjQ (JjLlu ^>la (jjQ ^oju 1*1^3 ♦WAN 
Jl J^jI^j ^ic JIij^ajLJI o-o ^iL^j Lq LLjJ Ji* 

J[g^-a II Jj^l (jjo 3 Q UjUA. II oJo^.i WAN 



dugjJLJI lIjLu^ jjAajq / ujLloj cL^Lk cLlujL^ 3JT 





. )±LSUn VOIP Jl lJLli usn£ - 5 
^ ^ VOIPJI ^li^ 

20 jjuLo Jitter Jl Jo** o9^i 6' cr*f4» 
5 80o^Lo DelayJI Jajlo65^Ju'ct*^ " • 

o ,^ 1 ^ lIj^-u^ o ^.Lc ^ 1 1 cLljLj ^JJjQ 1 80 

L ^J-C VOIP Jl (JjjLl.5 jL-LSjQ ^J-C jjll^J • 

• PESQ ^l Sili^ 



OJJ j^AJI ujrJJ o-^goll 



42 



Issue 26 -May/ 2012 




□ 




|Lfl£ 



N + 9 CCNA J^Lig ■"■<<■ ^...'.^n 



■h 



i 




!i!giii«m 



jjXJXJI OEJULU pSDJJl 

jion i'iQgi inn 






♦ 16Mbps ^ j-L^ij 

( J_jj_LJ^ iji'ijiU oJU^LIlO ^Q^JLQg ^1 lAc^ .>> n 1 

J Laid I ^LU ^LLj aKiLojfolA JaJ$ .^U^l jbJj ^ 
o jLjj^9 ^j>> dJilA (jjQ »^""'" (Jj^j ^o-^J LLljI tiJJ j J-q-slI^ 

ajjJ ^Ul p^UaJJ 3 \ ^^inio Static ip jjaj o' 

♦ ♦♦ ♦ "*VH *t ♦ ♦ ♦ 




11 



New Hotspot User 

General Limits Statistics 




OK 



Server; 



Lancd 



Maine: NetworkSet 




Password: 101012 




Re™ 



Address: P|19Z168. 10.12 
MAC Address: l~| 



Profile: |default 
Raiea: Tf 
Email: 



enT 



Copy 



disabled 



Static ip 



User <oj hotspot ^ ip ^Jj 3^5UL ^LJ^ 



Jl join 

65^1 6' Static ip ^ 3^^' 

:2uojiJI jij ^liJI Pool 
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•J QutvtLut 

Smple Glaus: Herface Queues Queue Tme Queue T^ea 

♦ |[ DO Reset Cetrten 00 Reset H Garten 

= Nam* TupttArit frw jMpiU plwd HwDowr 

St*„*k 1921651012 IH 2$fr 



• Simple Cjutut < MttworfcStf, 192.166 J012> 



Advanced 




Traffic 


Tcti 


Tatd batistes 





T«0Mjw. |1» JWi ji-J, ^ * 



Mir I** \\D 3 ^ ~~ Zl t * i ''* 

▼ Tiiw 



; £ cur j*i 







Cm* 










Dtodbti 




Copy 








:Clock Jl l±Ia£q System Su^jLE ^ NTP J^^jqjj J^>l* 6^ SlcL^JI ^ a^LLj :LULj 



13 NTP Client 

Mode: 

Primary NTP Server: 



£3 



unicast 



31 



1 1 52.43,244. 1S 



OK 



Cancel 



Secondary NTP Server: |0000 



Apply 



Enable 



Disable 



[disabled" 



synchronized 



New Schedule 
Name: 




El Clock 



o 



Time DST 
Date 







: 1 13:53:42 


4*Lu 24 



Time Zone: |+E[}:DD 



O DST .Active 



OK 



Cancel 



Apply 



12SK 



OK 



Start Date: | Hay/25/301 2 £*jtj 
Start Time: 1 13:00:00 lyjLJl ^jtill 3^ 



Cancel 



Apply 



Interval: |1d 00:00:00 
On Event: 



***** 



Disable 



/queue simple 

set NetworkSet mm-limit=1024DDD/12BDDD 



Comment 



Copy 



Remove 



|disabled 



cd , System ^UjLq ^ Scheduler liLbL :LsjI* 

LllJLQ^UI (jl j-L^jjJI £jQ cLCj_ujJI j 19YI «^ I U 0 II JIlqqJ 1^ ~« 



: Lij^^/I 3UUJ (JjjLu-l^ /*i ij<..>M 



1 d LLlI£ ," VJ <..,ii Ajidj o>L£ l^j Interval JJ . 



♦ (,) SLL^Lo ^ I Comma SioMslj #o^-Lq-qj jnn ^'tMifl ojx- S-iLb^f 

Scheduler u * j SULq^I 31^ >uJI ^ . . ^ ^ yUq 

dJL^JJ LgjJox- &lLog£ j-jj-j Lq^ ojLJJL cLcjjjjJI cllxi jj_^J^ jAI 

♦♦ 

(5jAl ojjo JAaj Lq jJx^9 j-q^lloJI (jjq jAjLllqJI J-uai i j (jl -La j ^j-SJ profile Jl ^jj-La ^jx. ^J^jjj! ^jAl 2L£jjJ^ lIJJLL^ 



* * ♦ ♦ 

<jl JjqLj Ldj^j^jLoJI j-Q^uxi JIiI^l^qJI (jjQ j ; '< 11^ j; H LiULLfcQ SL^LoJI (jjQ jjjlII 11a ^.i ^o< I LLjaJ Lo Iaa 

,^<*i.\( Al ^.ij a£ (j^S-J (jl ^ i QJLjg <Lu^j_qJI LU ^ Luj (jl dJL^^f ^.ij ^jlLc ^>^cl U *i 
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-j>AaJI i <i 



J^,liHUAWEI DATACOM Engineer 
9 CCNA XCNP.MCPojLui 
lJ aLi. . Atempo Time Navigator 

. Oj_l±LiLj yl yCj-lJ LJ jiiXLi {j-ijC 



mabroukianas@gmail.com 



UmiSIIIIIIBIIlMIII 



DNS ??? 

IPoE « PPPoE 



♦♦ 

^JJj ^ jjUTTj Dial-up, -.K.~, ^ -a : <l...ll 



SlJI ppp ADSL ^jJ 

ADSL^. Alio JjJi (jji LgJ ^)QnlQ II OJ-L^JI Jill I 

jjlo^U DHCPJ^^j^ IPoEAoiaji IPoE 

. PPPoE^j 3 jj3l0.il ^j^li <>> j^ii 

IPoe / nHnPpi^?...i <<uj 
IPTV broadcast) .iij^ij^l y±c ^^j^idiJl 
^£.±1 3jLc PPPoELol (services 

Hish Speed ) ^LaJI v;;-^" ^ ^iij^)?! 
) ^^ij^l J^5j 5> j >i£. ^Laj^l 5 (Internet 

. (VoIP 

♦ 

^Iojj-slII J^LLaJJI <LqjA ^o-jj-oU ^^.ujLuj^I J^j^UI 

♦♦ 

(^ioj cLdjTnio JZJ sessionpLiuj 

♦♦ 

3 ^ I ill 1 1 <^JJ (J^o^^JI ^ I C Ojh Inll I LgjQ nil 

3^711 : >ijv.v« 0 n AuthenticationJ^ .1 
of Jx5 (authenticated ) ^VimoN Su^ 

a^inill ^Jr, : Access control 3 

* ♦♦ 

^Jl (J^^JI cLcjjuJ J_J Jj^Ii M-IjQ « LgJ Lq-S? Y m » 1 



. lIIj-LIlqJI £jq J) fill Lo (jjjLul ^j-Lc- 

(jl : (connection ) JLoj^I SllSI jjq .4 

4>jlLl -i. u^fl 6jlLl1£1JI PPPoE^ IPoE 

Ll^lcuJjjLiij IPoE^l^l ojjh plj^f <3_lI^LloJJ 

(J^S^J^JjJI ligJ ^ nil *tj J^J (JjQ LqJ DHCP rOJ-uL 

♦♦ 

.pi*. J < iii j IPoE connection pLLjI 



broadband) jjLqjJJI ^oJ^q LJL^ ^^su 

^LojiJI^j^^^jAiLlI >Li5Ju( service provider 

AJ^J ^j-UI lIjIjQ jiJI dJjjaJLl ilJjTnlO J_SJ ^Qnll ^yLlI 

c (Hish Speed Internet ) ^JLsdl ^; ^" 

Ci±l\ c (VoIP ) J^^j^ ^L^ij^I 

Lli^J 5JWII ^ (IPTV ) J^J jlj^fl >LC ^J^J^idUl 

♦♦ 

0 ja£JI ^Jj jLlug ....( Video On HpmanH), JUII 

L_> J-LO-C- l—>IjQ JjLJI (JjO djQjjk ^1 r>j a£j ^J-C 

. Multiplay services 

^^jidUl .iiJJ Sl^iIIL Multicast^ y& u^^i 
^ (IPTV broadcast services) j^j>Lj^I >xc 
05^ 6' ^ci^^ 1 ^Lo^iiJI JiJ) Unicast 

^ii^^ U£ SuQjii JiJ Sll^LLoJI Bandwidth 

.tlljJLiiuO (JjQ 

TR-101 

Si^ii j^i ADSL TR-101 (i^iLo 

oj^iiioJI jjLqjJJI ( Ropology network) 



IP OVer ^oLai ^^lil jqLi^JLJ-j 

,oL5 ^Lk^lll^ c Ethernet (IPoE)encapsulation 
^5%j^j_j (jjq aj^sJI extension J^su 
dUQl^iO^Li c DHCPjUj Uj c LAN 

broadband^U^UI Slsl^I^JI JL^S^I Sl^ii ^ 
a^iiVtll ^Iomi) j<.^h ^35j . ( network 
♦ ADSL TR-101 (j^lla <-q >b (jjq jjj^o 
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(PPP Link Control Protocol (I nPpi^?...i . 

PAP ) 5 I CHAP) ,^^^1 2uo>JI 

u i£ ijj La^ 5 Authentication 
jj j 1 1 Authentication J<>£. <oLi <LiJLj uo.>>n 
Challenge Handshake^^aJu^ij Lo SjL^ t 
t ^iJ j y±i . (Authentication Protocol (CHAP 
Authentication ^^LoUl oS^j 

Extensible Authentication aI^jljL (jyJ 
^oIj SlLi^JI oiA ^.(Protocol (EAP 

(Internet Protocol Control Protocol (IPCP 

oiiiLii^j c link availability ^a^U SiU^g PPP 




Active 
Discovery 
(PPPoE) 



Link 
Establishment 
Session (PPP LCP) 
Establishment 

Authentication 
(e.g.. EAP) 

Address 

Assignment 
(IPCP) 



+ Link 
Keep-ANves Monitoring 



PADI ( Sessional D+OxOOOO) 



^FADO {Sessfon= ID* 0x00001 



PADS {Specifies Sessioh-ID} 



Configure Request 



Configure- Aek 



Success 



IP-Add res s- Request 



IP- Address- Ack 



Data Transfer 



Echo- Request 



Echo-Reply 




RADIUS 

Server 



PPP Link Establishment : 5PPP0E Session Establishment 



f>*l± jL>j)/ hOStJJ 3i^al 5 5UI PPPoE^ 

hostjl ^Ul PPPoE 

session initiationj broadcast requestJL^ jL 
) ^ PPPoEjojI^ * ((PADI 
^Lgijl sus;< j^aJJ a^ii^ 65^J (PADO 

sessionj^j 5 <>3>sJI jLLLL hostjl .o$£j 
^j^la ,ojLaJI L-iiaJLuj <. ( request (PADR 
ox. (session (session identifiers jslo qu*i 
Li^sjPADS) . PPP session ID) 3JUj 

. sessionsLp J'j u 1 ''j"- 1 -?" 

#Liul SlLi^o L±J Jr-- 1 Ai PPPoE ^Lai^i 
^^LiuJI -aLi 5lL^ ^1 ol* ^ t PPP link 

j 0 c?..tj,..i ^ ui Authentication 




DHCP 
Server 



dJLujI^ 3 ^ I ill I l^-LuJ-J fO-uJj j^-uOJ dJj^..O J-iii 

PPPOE^ ^Ul jl^JI ^ .^UaiJI 

BRAS )Broadband Remote) J^£i session 
Access Server . (BSR)Broadband Services 
PPPoE^JjaiL^^L I Poe session^^j Router 

. session 
PPPoE^ <Lo jJLo 3 
MIq 4 nodes 2^ JLajMJ PPP p.^?..^ 
^.q dJU^Tml (CM . (server) ^jLk^ (client) 

LJU 4 ISO 3309 framingplAiLl^L y^p* 
PPP connection J^sJ <j jJ^JI ^ ^jAidl 
PPP over ATM (PPPoA) .aidi^Q media 
• (PPP over SONET/SDH (POS 5 u PPPoE 
4>q M^l y^ni i JL^ij^I Slqj^ ^ PPPoAol^ 

yZW ^j^ku^fl 5^ ^ c ADSI ^^ILqJI 

j_Lc 5 £ i ili 1 1 ( - >Iojj-SlII ^1 j II jjLjlujjo J^jjJ 

♦♦ ♦♦ 

multiservice access nodejio ^u^...^ au«. 
digital subscriber line access^ t ((MSAN 
( oLi5 >. edge router^ (multiplexer (DSLAM 
.^.l^ ATM uplink^ ^jijujl &t>*z 

5^ PPPoAJ — i ; 0 ii jj^ji ^ PPPoE 

(^AJ PPPoE * oLjJ J<->-" ^ o^uo 

BSR 5 (Residential Gateway (R"G/CPE 
^ ^Hij #Lo*j^I . ((Aggregation Router 










PPP 


PPPoE 


Ethernet 


Ethernet 


lOBaseT 


xDSL 



RADIUS 

Server 



DHCP 



Etlherniet 


Etriemet 


xDSL 


GigE 



Ethernet — H« 



I- 



PPPvJ 



PPP 




PPPoE 




Ethernet 


Ethernet 


GigE 


GigE 


— H 









Ethe.-net 



•I 



ajj^AJia^l^l^jaiL^^L^ PPPoE session 
PPPoE pLiuj (cOj c^l . session alivenessj 
JjLuj jjj^ JjLlj ^jJa ox. connection 
unique^A^J ^ SlI^^I oi^ c PPPoE 
link connection 0 im.rLi ^oIj c LJl3. session ID 
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IP over Ethernet.4 

Aaiaj . PPP encapsulation^ol^LLjl 

<oJ . LAN^ HostsJJ IP^I^ thLisiJ 
^jAl jj^5^5j^jji9 DHCPJ extension 
Extensible Authentication Protocol J^^jj 

. PPPoE 

t Liijl ^ ■< ( _ 7 ic 5loLc ojiaJ ^"1 ; dlouil J <■•>■>! 

DHCP,ojLL£ BSRJosj LoaIc IPoE session 



Session 
Establishment 

Link 

Establishment 

Authentication 



Address 
Assignment 
{DHCP) 




RADIUS 
Server 



Link 
Monitoring 



DHCPOiscover 



DH CP-Offer 



DHCP-Request 



DHCP-Ack 



Data Transfer 



RADIUS Request 



RADIUS Reply 




i i mi 



♦♦ 

: IPoE session^Liuj M 
PPPoE client^ sessioruLSuL p$su ^flPoE 

^jJ oijJ ^JUJLg c PPPoe server^ 

♦♦ 

IP(jl3±c pi Aaa L-ia-i 4LdJjJ$ 4 unique ID 

*lj""'T II lAjjSII 

: ^ jT-v.^n Authetication J<>£. M 
authenticationj^J ^ll^i >£i£jlPoE 



ac.Aii p^"-.- c^U * CHAPjia 'ij--^" 

aja^U c lj"->'iH JLajl ^ < ; J^a ^LooIslg 

physical MSANJ_lS ^ jjLq^Islq^jj^j 

^ MSAN node id <, slot) jA y&^w connectivity 
Ethernet VLAN/ ^ ,i 0 i9i ^l (3^oj ^1 c( port 

• DHCPL-iib cUjq ^jI ^jJI ATM VC 



: IP ^ja^j H 

DHCP,ojLk • IP^I^jx, o^sul broadcast^ilia 

^Ul ^1 ^ client Jl ^jll^j 



- ^ijv.v^ii AutheticationJ^ H 

^Lo^JI Ja£ ^JjI^lJI Su^ ^ ^JuPPPoE 

JaljTnll (^Jj-b OjLc^ id's 1 m) II ^Jl J^^^JLj <d 



^jl^^j^LLjJIol^ JL^jjL PPPoE^jLk 

3 Myt*t^\\ lu&h ^Radius 

♦♦ 

: Jjjq lIjLq^J-sloJI 

. . . .Iij ^lj)fl SlcVj c ADSL/ IPTV 
cJlioJI Jiim c QoS^i ^jLLo- Marking 

VOIP 3uo^ ^ Jj.^^M ^ ^ui ^ ^LIloJI (jLo 



dJLo-c Iaaj c ^LJ_j sessionpLiuj ^ Lq ji 

. Radius accounting 



: IP (jl^ ^a^J M 

IP J^j>j i^J>lilJJ AuthenticationJ^ >isu 
PPPoEj IP (Control Protocol (IPCP 

. client 

: Session 3u£l jjq H 
PPP keep-alive JjL^jj ^Ijjll^i ^jJa 
.iijI^ Ijj Lq 3u£I jJ-JI 6^19 c((echo 

.lie . dlaiAjQ^ SlgjLS Jl>i ^/ session 
pLgij fu±^ t keepalives echos^ jj^uq j^-m* 

. session 

PPPoE cj^l >+3±sdi c>q 6t^l PPPoE^aJ 

J_t >qJI JiajL * Ij^ *cLo>^ / L£ /—II lIuL 8 (-QJ-Ja-> 

3uo^ #L^jl5 o^iij #Liu^ processingojo 
. IPoEjxi cy> /jj iu " 5^ Ux» PPP 

Multicast ^ cLil^ PPPoE pLol >i^l 
J^l 5^ (IPTV^^j^ilUl diJl . os-U^j 

( gjLLaU multicast ur Lc I^li^ LUicI a^I5u 

PPPnFpl ^ jV.v^H ^ ^AidJ ^il >LJI 

pl^jj BSR jl^ c>o ^li^ju multicast JJ 
cp^jjidUl Sj^Liuq J5J lIIjjlaIlq JiJ session 

lIjIjjQ l^j3Lj (^-LJ^JJ 1 1 oLii) (35*0-^0-11 (J ' > » (JLtJjj 

o^f ^LLJJI o^iu MSAN/DSLAM^Jj 
(3jq PPPoE ^Loj li^ c Unique IDl^J session 
ji 0 ov t .iV ^ U PcyJ SJ| ia/k ^ia<« multicast ^ j 

a ^ :j oii ^lUMI ,-J< ; .vJI >n\< IPoE 
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s < i ^ broadcast >i ,o>. ^ Jioij ^L^UI a^I . ACKJL^ jL jlik<Jl ,ojLk ^d^ii 
_9->iJ nHHP^ii -.nun Ji-ji. j. IP^LLc^j^ BSRo3*j 0? 6^J ^ l 5 JI • JL^' 

. DHCP relays w o ^ 11^ 

: I PoE Session 3u£l^ IEI 

Jaiu . Keep aliveSuJLS IP SuUs. p' ^" -' <Gl DHCP relay <>o 5a5li 

J ' "^.)' * ' ? J .'. " jLaj^M aslc <2LQg RG j^^j LqaIslq . IP(JJ Iaa. j ■ ■ ^ " ^jl^Lj ,"i fig o.'.'.° ' Jjjjla o-c- ^iJJj 
(jl <_>ajXfljBSR (_3l.i1 co JAa rt ojjlqJ j-^JI o ( _ y £ij ^q2j ^qJ I jj . BSR^Jj DHCP, ■ I U ^JjLjjjj jlj y ■ « 



Jl oliAj pi ^" ■ ^iLJjg cL^j (^aLaJI Session IDt-j sLojjlo xjq 1. 1 i^jjj connection 

. Ipv6 5 IPv4 J£il u;!-^'" IPoE 2 VLAN Ulu . VLAN 

\PoE 3 PPPoE^ ajjUA .5 

PPPoEJ^^j^ ^^ij 4 cyaj^l ^Uaill "■'<; ^ J IPoE 5 PPPoE^ Zjjlsus oLjJ J^^aJI ,oii) 

. IPvb^j IPv4 t>3 MigrationJI u... ;j ^-.u ,.*n.\ ^11 sai.^vi. ^u^oii 
<*jal^aJu4il <_>£aj jj t 5 i i9n ^jia ^ a-lclq 05^1 6' IPoEJJ ^Lq^iJJ DHCPJJ extension J^c aj 



IPoE 


PPPoE 


cLll^LLJI 


IPoljic ^o.^iit.ij c connectionless 


J^PPP session identifier 


Session^Liul 


DHCP^o^ c£j>la oxTriggered 
Discover 


^Li^L login^j^ ^ Triggred 
. EAP^I CHAP cPAP 


^Jj7,vi Q ll AutheticationJ^x 


^omi jjLLl^ c^isu) DHCP 
( Radius^l.^TniL 


Radius 


Authentication ^qjI^ 


physical port ^ix DHCP 
VC^I cVLAN 


(login)J^iij ^L^l ^ix DHCP 


IP (jljix ajjj^j 


n^LUI jjajiU DHCP^LUa 


LCP echo keep alive 


dLLol^o Session 


Point-to-multipoint 


IPvb^J 


rt^ft II ,U-»ft » 


IPv4/IPv6 migration 


2uo> J^J j^jL 8 aiL^i 





LLl^IjI a£ a< : cr 1 ^ *AIIaj9 ^Lo^. ^AiU IPoE 5 PPPoEJjl^ij ^cuj Lo Uli. 

.odJI A^JaAa dill e-lAt (j\ jAl f^uagja ( _ r o t o<ISII ^jj ^ ■ Q 1\j I j < ^ 
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